Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

611798b52f...d4.exe

windows7-x64

6

611798b52f...d4.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    1s
  • max time network
    31s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/10/2022, 07:19 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    611798b52fe2ada1665f881ac425443c1cea9500d71868709468f3de6fd83ed4.exe

  • Size

    223KB

  • MD5

    7cdeb39a4f4c0d02f647f0d4ef4b40d9

  • SHA1

    b469368aa2945ccb3de3f20a8a678603b7be2c0d

  • SHA256

    611798b52fe2ada1665f881ac425443c1cea9500d71868709468f3de6fd83ed4

  • SHA512

    522e45dc68de857ddd6986eee8c7ab7de5a25a9a0ea767b3895299ad68e31923d469d646f0038d05643939b75dda48f35a797259f452781a6b291ca588f9bb83

  • SSDEEP

    3072:rbm309SZ88zAcr/kvN9Q1eaolXtz+xhS2nY5QYvOWvCsX2qKuO8XScqd6QomWSiR:3mmh8zxUCwXtzs2QdsIFNRiSY4ED07U

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\611798b52fe2ada1665f881ac425443c1cea9500d71868709468f3de6fd83ed4.exe
    "C:\Users\Admin\AppData\Local\Temp\611798b52fe2ada1665f881ac425443c1cea9500d71868709468f3de6fd83ed4.exe"
    1⤵
      PID:4848

    Network

    • flag-us
      DNS
      moodmodel.biz
      Remote address:
      8.8.8.8:53
      Request
      moodmodel.biz
      IN A
      Response
      moodmodel.biz
      IN A
      58.158.177.102
    • flag-us
      DNS
      moodmodel.biz
      Remote address:
      8.8.8.8:53
      Request
      moodmodel.biz
      IN A
    • flag-us
      DNS
      allmodel-pro.com
      Remote address:
      8.8.8.8:53
      Request
      allmodel-pro.com
      IN A
      Response
      allmodel-pro.com
      IN A
      193.166.255.171
    • 193.166.255.171:80
      allmodel-pro.com
      208 B
       4
    • 58.158.177.102:80
      moodmodel.biz
      208 B
       4
    • 8.238.20.126:80
      46 B
       1
    • 8.253.208.120:80
      52 B
       1
    • 8.8.8.8:53
      moodmodel.biz
      dns
      118 B
       75 B
       2
      1

      DNS Request

      moodmodel.biz

      DNS Request

      moodmodel.biz

      DNS Response

      58.158.177.102

    • 8.8.8.8:53
      allmodel-pro.com
      dns
      62 B
       78 B
       1
      1

      DNS Request

      allmodel-pro.com

      DNS Response

      193.166.255.171

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4848-132-0x0000000001E40000-0x0000000001E6F000-memory.dmp

      Filesize

      188KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.