Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Xeno[1].exe

windows11-21h2-x64

10

Restructur...Ad.cda

windows11-21h2-x64

1

Restructur...es.cda

windows11-21h2-x64

1

Restructur...go.cda

windows11-21h2-x64

1

Restructur...ck.cda

windows11-21h2-x64

1

Restructur...nk.cda

windows11-21h2-x64

1

Restructur...ic.cda

windows11-21h2-x64

1

Restructur...ng.cda

windows11-21h2-x64

1

Restructur...lk.cda

windows11-21h2-x64

1

Restructur...ty.cab

windows11-21h2-x64

1

Avenue

windows11-21h2-x64

1

Chi

windows11-21h2-x64

1

Congratulations

windows11-21h2-x64

1

Cw

windows11-21h2-x64

1

Devices

windows11-21h2-x64

1

Drivers

windows11-21h2-x64

1

Emails

windows11-21h2-x64

1

Independently

windows11-21h2-x64

1

Levy

windows11-21h2-x64

1

Moments

windows11-21h2-x64

1

Purchased

windows11-21h2-x64

1

They

windows11-21h2-x64

1

Restructur...st.cda

windows11-21h2-x64

1

Restructur...um.cda

windows11-21h2-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    94s
  • platform
    windows11-21h2_x64
  • resource
    win11-20250217-en
  • resource tags

    arch:x64arch:x86image:win11-20250217-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    13/03/2025, 15:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    RestructuringStorage/Cargo.cda

  • Size

    78KB

  • MD5

    deead8c5c5156c81b433581e467d790d

  • SHA1

    46f905214114233c659390ca79a26bc7ea867b22

  • SHA256

    59b3a1f07a81ececccf8e74dec98b3c6bb3d53819a7f2379d7ebe8df95770ce8

  • SHA512

    9a8feb225a56b911dc3288a82730df28af6901c3860b3bcc95685b2456672b12afdbd45a14eadb493b70e472eceeb04ef4225f0ac059de330c72909a7b6eddab

  • SSDEEP

    1536:Fj0Up8WdzYvuGApa/cPY0QzGMUPsiphqYskl5ZhPvlepz2tw:FJ+vqO0UGkIhqkw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 8 IoCs
  • Suspicious use of SendNotifyMessage 7 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Program Files\VideoLAN\VLC\vlc.exe
    "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\RestructuringStorage\Cargo.cda"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2440

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2440-6-0x00007FFC306A0000-0x00007FFC306D4000-memory.dmp

    Filesize

    208KB

    Download

  • memory/2440-5-0x00007FF769860000-0x00007FF769958000-memory.dmp

    Filesize

    992KB

    Download

  • memory/2440-10-0x00007FFC328A0000-0x00007FFC328B1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-14-0x00007FFC2D730000-0x00007FFC2D741000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-13-0x00007FFC2D750000-0x00007FFC2D76D000-memory.dmp

    Filesize

    116KB

    Download

  • memory/2440-12-0x00007FFC2DAA0000-0x00007FFC2DAB1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-16-0x00007FFC2CAA0000-0x00007FFC2CAE1000-memory.dmp

    Filesize

    260KB

    Download

  • memory/2440-15-0x00007FFC1BD00000-0x00007FFC1BF0B000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2440-18-0x00007FFC2D700000-0x00007FFC2D721000-memory.dmp

    Filesize

    132KB

    Download

  • memory/2440-30-0x00007FFC28040000-0x00007FFC28097000-memory.dmp

    Filesize

    348KB

    Download

  • memory/2440-28-0x00007FFC21D20000-0x00007FFC21D9C000-memory.dmp

    Filesize

    496KB

    Download

  • memory/2440-27-0x00007FFC22F50000-0x00007FFC22FB7000-memory.dmp

    Filesize

    412KB

    Download

  • memory/2440-26-0x00007FFC2C9D0000-0x00007FFC2CA00000-memory.dmp

    Filesize

    192KB

    Download

  • memory/2440-29-0x00007FFC2C9B0000-0x00007FFC2C9C1000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-31-0x00007FFC1A470000-0x00007FFC1A57E000-memory.dmp

    Filesize

    1.1MB

    Download

  • memory/2440-17-0x00007FFC1AC50000-0x00007FFC1BD00000-memory.dmp

    Filesize

    16.7MB

    Download

  • memory/2440-25-0x00007FFC2CA00000-0x00007FFC2CA18000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2440-24-0x00007FFC2CA20000-0x00007FFC2CA31000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-23-0x00007FFC2CA40000-0x00007FFC2CA5B000-memory.dmp

    Filesize

    108KB

    Download

  • memory/2440-22-0x00007FFC2CA60000-0x00007FFC2CA71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-32-0x00000276E9490000-0x00000276EACFF000-memory.dmp

    Filesize

    24.4MB

    Download

  • memory/2440-21-0x00007FFC2CA80000-0x00007FFC2CA91000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-20-0x00007FFC2CC60000-0x00007FFC2CC71000-memory.dmp

    Filesize

    68KB

    Download

  • memory/2440-19-0x00007FFC2CCE0000-0x00007FFC2CCF8000-memory.dmp

    Filesize

    96KB

    Download

  • memory/2440-7-0x00007FFC2CE50000-0x00007FFC2D106000-memory.dmp

    Filesize

    2.7MB

    Download

  • memory/2440-11-0x00007FFC2DBB0000-0x00007FFC2DBC7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2440-9-0x00007FFC32CB0000-0x00007FFC32CC7000-memory.dmp

    Filesize

    92KB

    Download

  • memory/2440-8-0x00007FFC36C90000-0x00007FFC36CA8000-memory.dmp

    Filesize

    96KB

    Download