Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

Autorisoft.zip

windows11-21h2-x64

1

Start.exe

windows11-21h2-x64

10

gui.lua

windows11-21h2-x64

3

internal/e...ck.lua

windows11-21h2-x64

3

internal/e...eg.lua

windows11-21h2-x64

3

internal/e...ad.lua

windows11-21h2-x64

3

internal/e...rs.lua

windows11-21h2-x64

3

internal/e...rs.lua

windows11-21h2-x64

3

internal/e...or.lua

windows11-21h2-x64

3

internal/e...es.lua

windows11-21h2-x64

3

internal/e...es.lua

windows11-21h2-x64

3

internal/game/AI.lua

windows11-21h2-x64

3

internal/g...ip.lua

windows11-21h2-x64

3

internal/g...ity.js

windows11-21h2-x64

3

internal/g...ct.lua

windows11-21h2-x64

3

internal/game/Ped.lua

windows11-21h2-x64

3

internal/g...er.lua

windows11-21h2-x64

3

internal/g...le.lua

windows11-21h2-x64

3

internal/g...me.lua

windows11-21h2-x64

3

internal/g...cs.lua

windows11-21h2-x64

3

internal/game/gui.js

windows11-21h2-x64

3

internal/g...enu.js

windows11-21h2-x64

3

internal/g...ng.lua

windows11-21h2-x64

3

internal/g...er.lua

windows11-21h2-x64

3

internal/game/ui.lua

windows11-21h2-x64

3

internal/main.dll

windows11-21h2-x64

5

internal/main.lua

windows11-21h2-x64

3

internal/m...on.lua

windows11-21h2-x64

3

internal/m...ds.lua

windows11-21h2-x64

3

internal/m...kv.lua

windows11-21h2-x64

3

main_functions.lua

windows11-21h2-x64

3

natives.ini

windows11-21h2-x64

3

Analysis

  • max time kernel
    146s
  • max time network
    150s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    22/12/2024, 14:30 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    natives.ini

  • Size

    213KB

  • MD5

    06fcd6f261866743ab9497f7c8a9567c

  • SHA1

    fb065df9a6b79ac19da443e2e6aea1f5bed809b6

  • SHA256

    8b20f6fd19009089bf295e6a60bd03f63320abbf7ed262865b95f507576a76a8

  • SHA512

    1d03cec66dc0f9171f5b10a4179a0c3fc5007047e5e98c029ae8093ff16400a370146b734902d163643ac98aab48c60443cd02e5e8149eb94e40ebcb95f377cc

  • SSDEEP

    6144:C1zRivatBTTOitaP/LW27TMm3dXSDCMlh:/ooitkLW27TMm3d8C6

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\natives.ini
    1⤵
    • Modifies registry class
    PID:5012
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.