Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

8833fbb977...31.exe

windows7-x64

1

8833fbb977...31.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    130s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/10/2022, 19:02 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8833fbb9775c499d2beeb3368554bef614dd4c85c97b9828281648771e8bea31.exe

  • Size

    196KB

  • MD5

    0032b775da4c6d09a844d572358aac10

  • SHA1

    509b7f65ce960f8419ecb896934c7ccc6d1139c4

  • SHA256

    8833fbb9775c499d2beeb3368554bef614dd4c85c97b9828281648771e8bea31

  • SHA512

    e1b48674241f555e08e84f36a13a9b071b581faf245dc99b6f3a38eb749ddf03784a757e3c0cde2a39e56cbb296d8507d05f5f400c62460e7e42ade684b6ed14

  • SSDEEP

    6144:btaZQRfeoW7JBxk7QlCkukItPgbMl3/Iho:RwQE756ksPgsvI

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8833fbb9775c499d2beeb3368554bef614dd4c85c97b9828281648771e8bea31.exe
    "C:\Users\Admin\AppData\Local\Temp\8833fbb9775c499d2beeb3368554bef614dd4c85c97b9828281648771e8bea31.exe"
    1⤵
      PID:3408
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3408 -s 508
        2⤵
        • Program crash
        PID:4176
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 3408 -ip 3408
      1⤵
        PID:1176

      Network

      • flag-us
        DNS
        176.122.125.40.in-addr.arpa
        Remote address:
        8.8.8.8:53
        Request
        176.122.125.40.in-addr.arpa
        IN PTR
        Response
      • 93.184.221.240:80
        260 B
         5
      • 93.184.221.240:80
        322 B
         7
      • 93.184.221.240:80
        322 B
         7
      • 8.238.21.254:80
        46 B
         40 B
         1
        1
      • 104.80.225.205:443
        322 B
         7
      • 93.184.221.240:80
        322 B
         7
      • 93.184.221.240:80
        322 B
         7
      • 8.8.8.8:53
        176.122.125.40.in-addr.arpa
        dns
        73 B
         159 B
         1
        1

        DNS Request

        176.122.125.40.in-addr.arpa

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3408-132-0x0000000030000000-0x0000000030039000-memory.dmp

        Filesize

        228KB

        Download

      • memory/3408-133-0x0000000030000000-0x0000000030039000-memory.dmp

        Filesize

        228KB

        Download

      We care about your privacy.

      This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.