Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    146s
  • max time network
    152s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    30/12/2024, 19:35

General

  • Target

    solara.zip

  • Size

    2.7MB

  • MD5

    55f56644a331f6f8786a6f7478bd892e

  • SHA1

    0b17d6e3c7fdb692e0b7d34fe973f96e30c284a6

  • SHA256

    fd2d329ffbd4a0b2806aabbd909fe70d899c4c4a43a3b87d64a23b23bb16ea38

  • SHA512

    e08ad2d266c5c3f6b9059244969bf5a402b5b29ecdf42a51463074c4b13f68cd531816faaeae02a6b14bbd1940354f523ea370f807718a356d8f874eb28fb42c

  • SSDEEP

    49152:9iBl5SfH3DseM0yjdyzTvLfvzPQR4ktRQvsxJQivrfIuIoQjxnN6dxGNuAW16:9if5ETpgM/zzQmkisnfIuIoQjWcNaA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs

Processes

  • C:\Program Files\7-Zip\7zFM.exe
    "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\solara.zip"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    PID:3648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads