Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

aa09069f87...41.exe

windows7-x64

1

aa09069f87...41.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    163s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/10/2022, 11:58 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aa09069f876a958ea793dc7d88e397d5f1e43bad187f97532197b457e8865a41.exe

  • Size

    364KB

  • MD5

    67cc211b91bf635162877f4d6842bef2

  • SHA1

    b108bf9657b04311377684058397d396c34489f4

  • SHA256

    aa09069f876a958ea793dc7d88e397d5f1e43bad187f97532197b457e8865a41

  • SHA512

    0f4d8975f9d4f62b7fb3ca357b785fb63a23c1e3829c19495f0492374ce97b99950b8f3148e20c87af1e6ee5e9e898b0266e85f21990c3b6498b9afbea926f1b

  • SSDEEP

    6144:/naNJQ8CFKoZlgqypCr6z8Du8B0UfWFBftG+YkF/Rlaa7BCMkE7Zvi:Pauduxz8DBNeFBftykflaa71kepi

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\aa09069f876a958ea793dc7d88e397d5f1e43bad187f97532197b457e8865a41.exe
    "C:\Users\Admin\AppData\Local\Temp\aa09069f876a958ea793dc7d88e397d5f1e43bad187f97532197b457e8865a41.exe"
    1⤵
      PID:3872
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3872 -s 572
        2⤵
        • Program crash
        PID:3444
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3872 -s 572
        2⤵
        • Program crash
        PID:4704
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3872 -ip 3872
      1⤵
        PID:2440
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 476 -p 3872 -ip 3872
        1⤵
          PID:740

        Network

          No results found
        • 13.69.239.72:443
          322 B
           7
        No results found

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3872-132-0x0000000000400000-0x0000000000469000-memory.dmp

          Filesize

          420KB

          Download

        • memory/3872-133-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-134-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-135-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-136-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-137-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-138-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-139-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-140-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-141-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        • memory/3872-142-0x0000000000400000-0x0000000000469000-memory.dmp

          Filesize

          420KB

          Download

        • memory/3872-143-0x000000007FDF0000-0x000000007FE4C000-memory.dmp

          Filesize

          368KB

          Download

        We care about your privacy.

        This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.