Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

514ebb984f...98.exe

windows7-x64

7

514ebb984f...98.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    32s
  • max time network
    39s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2022, 09:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    514ebb984f43b721a8f22922907dd777a5297fe6524c09cf29f6a74b00fb7a98.exe

  • Size

    306KB

  • MD5

    79f6f15cc47aa5e4abe0a025cdbdff80

  • SHA1

    251b0c38afc97313cd48555321bc4e32f9dc2d4e

  • SHA256

    514ebb984f43b721a8f22922907dd777a5297fe6524c09cf29f6a74b00fb7a98

  • SHA512

    efd66b3045765e3fd7bcf01b3142e9c0d9229ae76c593e2c916fbbb710f6bc7c06ab2013a0658348d91856e5675d565deb020bc92a3fa53f8637e3169dc90df9

  • SSDEEP

    6144:0rnq9UarEuMEvjr24HtrxTUGFVENoCeY9iD6iM19aHik0S2:0rnq9jEsX2utrxAG7ENX38ik0S2

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\514ebb984f43b721a8f22922907dd777a5297fe6524c09cf29f6a74b00fb7a98.exe
    "C:\Users\Admin\AppData\Local\Temp\514ebb984f43b721a8f22922907dd777a5297fe6524c09cf29f6a74b00fb7a98.exe"
    1⤵
    • Loads dropped DLL
    PID:836

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\Tsu499BA264.dll
    Filesize

    267KB

    MD5

    d1ddd2bed23dd1e6a70855f5f7ba3e7b

    SHA1

    7c75eacc13fc2f225dfa9820ea306f6bbc891516

    SHA256

    e6f6af10a5d9496fda5f06b1dbc23f64ccda396b2fc219fd2464851edc003ba5

    SHA512

    d9647b1beffe978ef999e59417fbd6e9ce7fa7efbce690ce2039dd14bffbbdf8e18f56a529f1ce362a47b0b49121085afc6981e15b9177a3672e40de099369e1

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{E0CE0FAC-62C9-4A60-A88B-2AEB3B2D2D5A}\_Setup.dll
    Filesize

    222KB

    MD5

    27331df658c661fedf7f98404a45caaf

    SHA1

    401178774d951f31f27639dbb2db297a919668d3

    SHA256

    8e3d847e611a7d6c6c3f738850fe7454d30b7f647641c257ee6ba9a78ccb14e5

    SHA512

    7c9edbb8240b27f1cbdf62e3db2799866b4ca036121a170de5617cf76b1fcdec1001604a7ed5ca01de9bd62738048fe0b68d1a19bd3f0062e5e09fb4fb0c0797

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{E0CE0FAC-62C9-4A60-A88B-2AEB3B2D2D5A}\_Setupx.dll
    Filesize

    53KB

    MD5

    ce3b67e5923e1bc427e541b2a0a53cb4

    SHA1

    d3b521d5afd90ed22756dcecca63b4eec63e10a2

    SHA256

    6c2ef1a85b6cbe3993484af3a631c86d425279620b3c02593bf8364c8bca8318

    SHA512

    c7451789c5f4fcd3f30764e21d2f08a476e3ba4a20fe0d7954da48b06bcc2fd412bf49539d89e8b51f605418048d300457934a00a32921f222869ea9182d98be

    Download Submit

  • memory/836-55-0x0000000075AD1000-0x0000000075AD3000-memory.dmp

    Filesize

    8KB

    Download