Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1689222d41...8f.exe

windows7-x64

1

1689222d41...8f.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    79s
  • max time network
    141s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2022, 06:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1689222d41bea8e3e2b7da0638c3ee51200ccb9011f8ccebc864fcd763746d8f.exe

  • Size

    147KB

  • MD5

    649438e5b6f2c277c5f95e4bca7a8bfa

  • SHA1

    8e33ce98e9964f40d38d699e1f10442777b6e6e0

  • SHA256

    1689222d41bea8e3e2b7da0638c3ee51200ccb9011f8ccebc864fcd763746d8f

  • SHA512

    505974ea6bb6d374b9995f842d0198a5c61806e042467221a3273add66669fd4b3ba6e798f689c8e4974b82d58c2f1982c59a7329a371efc9671125b0eefbeaa

  • SSDEEP

    3072:NwtRonyypexoiNtxYGvJfB30x5i2F9xUoE:pgNtxYUF12FkoE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious behavior: MapViewOfSection 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1689222d41bea8e3e2b7da0638c3ee51200ccb9011f8ccebc864fcd763746d8f.exe
    "C:\Users\Admin\AppData\Local\Temp\1689222d41bea8e3e2b7da0638c3ee51200ccb9011f8ccebc864fcd763746d8f.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: MapViewOfSection
    • Suspicious use of AdjustPrivilegeToken
    PID:4444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads