Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

09fe7735f7...8a.exe

windows11-21h2-x64

10

0a08857b3b...19.vbs

windows11-21h2-x64

10

0a92b6b6c9...d0.exe

windows11-21h2-x64

10

0b1f6297e8...e6.exe

windows11-21h2-x64

10

0b4ffb13a4...aa.exe

windows11-21h2-x64

10

0b9a6ed57e...55.exe

windows11-21h2-x64

7

0be395d43c...ca.exe

windows11-21h2-x64

7

0c046f07cd...89.exe

windows11-21h2-x64

10

0c1e5acd77...53.exe

windows11-21h2-x64

10

0d825ad1df...37.exe

windows11-21h2-x64

10

0db3c21dec...f9.exe

windows11-21h2-x64

10

0de875f11e...e9.exe

windows11-21h2-x64

10

0e3bb95b7b...77.exe

windows11-21h2-x64

10

0edd5342b1...6d.exe

windows11-21h2-x64

3

0f4450a6b2...b6.exe

windows11-21h2-x64

10

10758789ca...d1.exe

windows11-21h2-x64

10

11a3fde6fb...96.exe

windows11-21h2-x64

10

11bb525d06...1c.exe

windows11-21h2-x64

10

124dcea053...69.exe

windows11-21h2-x64

10

13431e2ee5...1c.elf

windows11-21h2-x64

3

15387da23f...315.js

windows11-21h2-x64

8

15938b5637...72.exe

windows11-21h2-x64

10

170dc238d7...a4.exe

windows11-21h2-x64

10

1728680969...4d.xll

windows11-21h2-x64

10

17dadc2b10...b1.elf

windows11-21h2-x64

3

190ffc93d1...d7.apk

windows11-21h2-x64

3

1a4383821d...e1.vbs

windows11-21h2-x64

8

1aa85c5026...8d.exe

windows11-21h2-x64

10

1b13d05cae...26.exe

windows11-21h2-x64

7

1b9334e09c...52.exe

windows11-21h2-x64

10

1bcbf1dce6...0c.exe

windows11-21h2-x64

7

1bd3fa491c...5b.exe

windows11-21h2-x64

10

Resubmissions

21/12/2024, 22:57 UTC

241221-2xpr2atjar 10

21/12/2024, 20:29 UTC

241221-y9xfvsyngy 10

Analysis

  • max time kernel
    7s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241023-en
  • resource tags

    arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    21/12/2024, 22:57 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17dadc2b105c925bb5d598789e418a9fdedac3a5a26a05fa4b77c8d82f685bb1.elf

  • Size

    26KB

  • MD5

    1c9847187417b3862a8bb18705951f8d

  • SHA1

    eed2e1e9134b783f8e2cc5b25de151fdcf1d3d7f

  • SHA256

    17dadc2b105c925bb5d598789e418a9fdedac3a5a26a05fa4b77c8d82f685bb1

  • SHA512

    59374fcc66d8d805a13b9b076001600df03049ea87c7f6c0468779352f4475c151048a1797b0842058a0543c52f5dbef57c0da3f6a3fcdf558f8bdfd614f0f81

  • SSDEEP

    768:eMKyhegCCMqf2ExRIIOyF+Hx42gU99k9q3UELuZ:NKy4qf2XmFYaqNLE

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\17dadc2b105c925bb5d598789e418a9fdedac3a5a26a05fa4b77c8d82f685bb1.elf
    1⤵
    • Modifies registry class
    PID:4836
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:2716

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.