Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    93s
  • max time network
    164s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/10/2022, 21:26

General

  • Target

    e4b3d7e57fb2d8141f053f1fbcc09fab9230a977553fdc92ac47f16809ad1632.exe

  • Size

    12KB

  • MD5

    91b01f09783125909c7f8ab41bfc1330

  • SHA1

    bf502153bef8ee469bee27859ab5b3ef37dedb50

  • SHA256

    e4b3d7e57fb2d8141f053f1fbcc09fab9230a977553fdc92ac47f16809ad1632

  • SHA512

    a4342cb662c1c6c6dffd43d5d1fae77e17d3d93cb0c71dd9c072913a11b63acff2390a97ea402f51cfc01c87352e0ef7f2813cc1613e7fbfbc48ef3f3602ff54

  • SSDEEP

    384:5apMlKzzzqmGpgS+Y6FMUOi/G3KUM4UXGo3Ce:UMlKPzmK3Fui/A3U2o3C

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e4b3d7e57fb2d8141f053f1fbcc09fab9230a977553fdc92ac47f16809ad1632.exe
    "C:\Users\Admin\AppData\Local\Temp\e4b3d7e57fb2d8141f053f1fbcc09fab9230a977553fdc92ac47f16809ad1632.exe"
    1⤵
    • Suspicious behavior: RenamesItself
    PID:3140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3140-132-0x0000000000400000-0x0000000000410000-memory.dmp

    Filesize

    64KB