Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Resubmissions
25/01/2025, 13:26
250125-qpljvsvjex 10Analysis
-
max time kernel
10s -
platform
windows11-21h2_x64 -
resource
win11-20241023-en -
resource tags
arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system -
submitted
25/01/2025, 13:26
Behavioral task
behavioral1
Sample
Xworm-V5.6 (1).rar
Resource
win11-20241023-en
2 signatures
150 seconds
General
-
Target
Xworm-V5.6 (1).rar
-
Size
20.9MB
-
MD5
fdbb726bb80ec771b3296a715153d518
-
SHA1
818f734ecfa2b86d06d0154db2aeb3ace92b2283
-
SHA256
e407a948340cdfcd470f25d6a891864e2aea65f06d007cc9d7bd4893b0682319
-
SHA512
b6f79f8e3182113efb6c8fb246f3bf149991a7e2255d6417d19dd478e681c08d8c3ad97d500a43609eb0dbcf5777daf58df5920e00aa40c516d5b1e46f8b3608
-
SSDEEP
393216:PV10n8N0/c2lDGdlMVSGpomu8u5E/ZsiLh5UirAxl9YVjxWiqcrOsb:PQn8N002A6IGS5E/RTrA89WiX9b
Score
1/10
Malware Config
Signatures
-
Suspicious use of AdjustPrivilegeToken 2 IoCs
description pid Process Token: SeRestorePrivilege 3144 7zFM.exe Token: 35 3144 7zFM.exe -
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 3144 7zFM.exe