Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
99s -
max time network
101s -
platform
windows10-ltsc 2021_x64 -
resource
win10ltsc2021-20241023-en -
resource tags
arch:x64arch:x86image:win10ltsc2021-20241023-enlocale:en-usos:windows10-ltsc 2021-x64system -
submitted
03/12/2024, 21:02
Behavioral task
behavioral1
Sample
Insta-Checker.rar
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral2
Sample
Insta-Checker/Data/Modules/instachecker.exe
Resource
win10ltsc2021-20241023-en
Behavioral task
behavioral3
Sample
Insta-Checker/Data/Modules/instachecker1.exe
Resource
win10ltsc2021-20241023-en
General
-
Target
Insta-Checker.rar
-
Size
12.5MB
-
MD5
c864c6ebc454038b621f3bc8e7f95e39
-
SHA1
b1300ab696a8bbcf9b298b077a64dc9c009bd4b3
-
SHA256
964a54a737831c42dbd01e9dad0032ee2431cd67d3b2876efa10dd7362385388
-
SHA512
c42779e89a8e8d8249c2bf70aebdeae2d18a70e331db33a49396aae9ab27515c84b4879f228b8ca46070e3311616a0bacf5f24c272eb5017c2f396c351588ecf
-
SSDEEP
393216:j6FSmKUd1aoRX7gJ1blsrJh/WoKncv2TJdC:j6FsUdr7e1blIuoKncvaJdC
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 2000 7zFM.exe Token: 35 2000 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2000 7zFM.exe