Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
96s -
max time network
138s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
19/10/2022, 18:51 UTC
General
-
Target
0f3dd41eebb81d8e2ec7ff66a4f26deb9ae46543f21b0c8e5678fdd45fbb55d4.exe
-
Size
66KB
-
MD5
a11057ce2a6827c35315072f1b541750
-
SHA1
56e4f31c10d9f3672c02ad8b722865cc7c292ee7
-
SHA256
0f3dd41eebb81d8e2ec7ff66a4f26deb9ae46543f21b0c8e5678fdd45fbb55d4
-
SHA512
a59c8051e48566938ebbabded39f7185123fa534e55862054bfc25e5802e86365a636140beb0c0781dce104fe4b33c5b4950fed70473b9eca481f6881d4ab705
-
SSDEEP
1536:tHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVtWc++u79:tHoLde/OgV432UcP39hXJZnWcPc
Score
8/10
Malware Config
Signatures
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in Windows directory 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\0f3dd41eebb81d8e2ec7ff66a4f26deb9ae46543f21b0c8e5678fdd45fbb55d4.exe"C:\Users\Admin\AppData\Local\Temp\0f3dd41eebb81d8e2ec7ff66a4f26deb9ae46543f21b0c8e5678fdd45fbb55d4.exe"1⤵
- Drops file in Windows directory
Network
-
DNS176.122.125.40.in-addr.arpaRemote address:8.8.8.8:53Request176.122.125.40.in-addr.arpaIN PTRResponse
-
93.184.220.29:80
-
93.184.220.29:80
-
13.69.239.73:443
-
8.8.8.8:53176.122.125.40.in-addr.arpadns
DNS Request
176.122.125.40.in-addr.arpa
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
160KB
-
Filesize
160KB