Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

9c9bb65a92...f4.exe

windows7-x64

8

9c9bb65a92...f4.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    3s
  • max time network
    2s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/10/2022, 06:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.exe

  • Size

    363KB

  • MD5

    f6f163fb6225eecd29794bc07a10724a

  • SHA1

    aeb3ab7be2394ae01d3e3bc1df9a44708165cb5b

  • SHA256

    9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4

  • SHA512

    a44ed6c4d54749318fabcfeede5a3f05f2be65db669673e3597c8dfd52067576fde8d806ea45cbc0fa72b8225a048dfb1c78e7ffda23fea85ccc096b9d2493a7

  • SSDEEP

    6144:6/QiQPbC+biHFF9mx9kOQ/UBTlakaBdGOzGfnXpiQCsoazZPElpMQgqoVJbYtD+G:CQiGbCW9+MBTlPadSfXioRcpMXVJoT

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.exe
    "C:\Users\Admin\AppData\Local\Temp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.exe"
    1⤵
      PID:3676
      • C:\Users\Admin\AppData\Local\Temp\is-PP0F5.tmp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.tmp
        "C:\Users\Admin\AppData\Local\Temp\is-PP0F5.tmp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.tmp" /SL5="$9004A,127903,56832,C:\Users\Admin\AppData\Local\Temp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.exe"
        2⤵
          PID:4216

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\AppData\Local\Temp\is-PP0F5.tmp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.tmp
        Filesize

        15KB

        MD5

        279be48a8ba47ec5a0281276c8cb2e2c

        SHA1

        42ec28632f8adb88c94c847f9d30e53e1a6352f4

        SHA256

        ffdc349f703509faae3d9273641073966090430e4aeb40b2c78aa4f8a44a8629

        SHA512

        4203c4fe9feabe83a848e78d3ef04e212f59a00aaf2b0faab99ec976f4295da7e00edb90384c713ae929671964663df19be73c0b19193649e0ad58bf3c7c0ed3

        Download Submit

      • C:\Users\Admin\AppData\Local\Temp\is-PP0F5.tmp\9c9bb65a928d09dac6e27c302ca57d132426d86b2c156845d94a0e3ddb401ff4.tmp
        Filesize

        44KB

        MD5

        a8a3f265d99d9b43d15fea6e72c2e30a

        SHA1

        d1a5a0534269d63a38a9ce8554caf5eec24e18fa

        SHA256

        d3aeb74015fa5ad374c873315e9540758e083b92b15ed6814cc3f1dc48d31a17

        SHA512

        90d156fc6fa909c28230a6adf83999b76b385d7a182b0a1b4e8257143ca42dcb1b5491d6d9cde6e91be069eb3d980aeaf9147f4c77aaada8c09dbc8a2847d8e7

        Download Submit

      • memory/3676-132-0x0000000000400000-0x0000000000414000-memory.dmp

        Filesize

        80KB

        Download

      • memory/3676-137-0x0000000000400000-0x0000000000414000-memory.dmp

        Filesize

        80KB

        Download