Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

dccd0abbeb...63.exe

windows7-x64

1

dccd0abbeb...63.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/01/2025, 17:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dccd0abbeb66929c47ea9c8a9cdee473d558cf5b8c16434bb4eb603f51a6c263.exe

  • Size

    1.1MB

  • MD5

    6fcabb0ce1ee56231558829f1f85b5ff

  • SHA1

    46741615ba1b9d626c563704e438ac8ccb4e2f89

  • SHA256

    dccd0abbeb66929c47ea9c8a9cdee473d558cf5b8c16434bb4eb603f51a6c263

  • SHA512

    b3f5e3380aca7236f14a53c8072ce1e1ec10e455a9a8ef3fe5888f38bc5b86c51c2436f427723f03614a3321957bcc618b824cfa97c9ff3e77cda43cabaa66d2

  • SSDEEP

    24576:w2UlQci3khFwLhaOUYo8N3ZbXBFO5ZDSiTbJ77:WGfaw1aOU/orFO5tV77

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\dccd0abbeb66929c47ea9c8a9cdee473d558cf5b8c16434bb4eb603f51a6c263.exe
    "C:\Users\Admin\AppData\Local\Temp\dccd0abbeb66929c47ea9c8a9cdee473d558cf5b8c16434bb4eb603f51a6c263.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2652-0-0x00007FFFA2C73000-0x00007FFFA2C75000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2652-3-0x000002AFF0430000-0x000002AFF0462000-memory.dmp

    Filesize

    200KB

    Download

  • memory/2652-6-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-7-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-8-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-9-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-10-0x000002AFF2600000-0x000002AFF2608000-memory.dmp

    Filesize

    32KB

    Download

  • memory/2652-13-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-12-0x000002AFF2650000-0x000002AFF265E000-memory.dmp

    Filesize

    56KB

    Download

  • memory/2652-11-0x000002AFF2680000-0x000002AFF26B8000-memory.dmp

    Filesize

    224KB

    Download

  • memory/2652-26-0x00007FFFA2C73000-0x00007FFFA2C75000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2652-27-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-28-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-29-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2652-30-0x00007FFFA2C70000-0x00007FFFA3731000-memory.dmp

    Filesize

    10.8MB

    Download