Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

e241991e7f...ab.exe

windows7-x64

7

e241991e7f...ab.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    5s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29/10/2022, 05:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e241991e7f62d3d7076108c653ef765cf73d54101272a1c89b01a063e829b3ab.exe

  • Size

    327KB

  • MD5

    70f6ff30c5624a7d76f9b173b9552d0e

  • SHA1

    11f641c467e6bd82fda308fe2604fa9884310edf

  • SHA256

    e241991e7f62d3d7076108c653ef765cf73d54101272a1c89b01a063e829b3ab

  • SHA512

    9f62cfd21f18eb20b5c44e9ead47fb0eb4851945f2317e73cf34bb0f94e657961aaa7e1627fc2d1af2cf4151a48ea9ad3e55be889d0186468d27a7c9e44e2a92

  • SSDEEP

    6144:hr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fl9:hr4iu6/eIo4Rsw33AtsmQ+

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e241991e7f62d3d7076108c653ef765cf73d54101272a1c89b01a063e829b3ab.exe
    "C:\Users\Admin\AppData\Local\Temp\e241991e7f62d3d7076108c653ef765cf73d54101272a1c89b01a063e829b3ab.exe"
    1⤵
    • Loads dropped DLL
    PID:1080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\TsuDD300CA4.dll
    Filesize

    31KB

    MD5

    ab825f8661a8391266b8133559802aa0

    SHA1

    3c81038b0ea2d02de0ca3ebd1c5ae9babd0aaf22

    SHA256

    db802c54488ae3ce6806cb4d3237096a13a3d1a956b4323910b6de2d5af67bcc

    SHA512

    7660d04f4e17cf9bb5e9168db373b8cc7469515586d4c3ab5712102068c7e6e9492d6c118a17242ba51661713f4e43148c2950372400054f041be5472dfcc1b9

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{57119204-8729-49BF-AB54-CF0B8CF2B0F2}\Custom.dll
    Filesize

    24KB

    MD5

    274b3863d419d385c2ecaf55d739f830

    SHA1

    e09e2e4d76933b69d33445d9babe5191df2b35e7

    SHA256

    f781bf02c57f8ec2fd4b80d3463620eee3d74da1758d404ec360edcbaab84be1

    SHA512

    80652feaee863b5add1ccadc897b682bed182650b7d41772ccccd74e31a960bb28daa516bc127e9ccfbe5113e22d796282c39370d246de1ecb600e8befcb7334

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{57119204-8729-49BF-AB54-CF0B8CF2B0F2}\_Setup.dll
    Filesize

    30KB

    MD5

    747f9b5b442f5cfd2161cc7fcfa42000

    SHA1

    2f5a7a515f2dc53d9f7f966a5274cb50dedb43a3

    SHA256

    60ccdbd2449a5da980d883a304c9eb637529bc0775498c77aced68a951e18f21

    SHA512

    a722364582b88f47c08b4c69e70a879163d06d74a656ef475376f52f9452074fc96fa76828b7ba35ee51eaf60d210a8b2f770b67d8f62bb5000411fdbd6f5098

    Download Submit

  • memory/1080-55-0x0000000076411000-0x0000000076413000-memory.dmp

    Filesize

    8KB

    Download