Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

5fd72a0ff7...18.exe

windows7-x64

8

5fd72a0ff7...18.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    121s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2022, 02:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5fd72a0ff7a00d07da69df67b532b1ac9da25e12e86e5fd7bbeb1e55da67a618.exe

  • Size

    26KB

  • MD5

    61bee6439f2e94d77545e34893267a69

  • SHA1

    81d1d07d1774f2b122d1f0d1ad64ca987662d680

  • SHA256

    5fd72a0ff7a00d07da69df67b532b1ac9da25e12e86e5fd7bbeb1e55da67a618

  • SHA512

    bddb833eae3dae446c1c8d0d67f0ca44ca92a85aaa4df26de9dcae2fcea9e554b71af35c0ef33c245777e362600fe5d86a1130d341b905a0c1f14ee4a98e80e3

  • SSDEEP

    768:pjfWXzgr9SBLXPJH18ywFphSpOKcBHnPCFlu:pjfozgr9ULXPJH1rw6O5Hn6Flu

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious behavior: LoadsDriver 10 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5fd72a0ff7a00d07da69df67b532b1ac9da25e12e86e5fd7bbeb1e55da67a618.exe
    "C:\Users\Admin\AppData\Local\Temp\5fd72a0ff7a00d07da69df67b532b1ac9da25e12e86e5fd7bbeb1e55da67a618.exe"
    1⤵
      PID:2220

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2220-132-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download

    • memory/2220-133-0x0000000000400000-0x0000000000413000-memory.dmp

      Filesize

      76KB

      Download