Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

f314518d2b...cf.exe

windows7_x64

10

f314518d2b...cf.exe

windows10_x64

1

Analysis

  • max time kernel
    129s
  • max time network
    125s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    19/07/2020, 10:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f314518d2bd4b4be8054513af0c141488831c28265adaeb213969617da721ecf.exe

  • Size

    100KB

  • MD5

    d598d0018fadd75b25f1220e707c0170

  • SHA1

    0aa684462db866176e485f09176f6f565693ff8e

  • SHA256

    f314518d2bd4b4be8054513af0c141488831c28265adaeb213969617da721ecf

  • SHA512

    87047418f7317683abc44677602560da44478ae9942a1e6829844f50e83b6573636b73965d8ff5850d2f58bbbbce5a14132fc60c3d6b5f0c52a02d3b4039de3a

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 14 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f314518d2bd4b4be8054513af0c141488831c28265adaeb213969617da721ecf.exe
    "C:\Users\Admin\AppData\Local\Temp\f314518d2bd4b4be8054513af0c141488831c28265adaeb213969617da721ecf.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    PID:1492

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1492-0-0x00000000022D0000-0x00000000022DC000-memory.dmp

    Filesize

    48KB

    Download

  • memory/1492-1-0x0000000000400000-0x0000000000419000-memory.dmp

    Filesize

    100KB

    Download