Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3d2ef565ea...f0.exe

windows7-x64

7

3d2ef565ea...f0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    23s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29/10/2022, 08:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d2ef565eabe06ff90f2ccf98ac39a0f03c50fe370ac99d4b1aafd4af76295f0.exe

  • Size

    312KB

  • MD5

    972548955c6a2a232ec58d4e2251a5c7

  • SHA1

    5d17184b2d70d625e12bbf0bc4e2739214be66b2

  • SHA256

    3d2ef565eabe06ff90f2ccf98ac39a0f03c50fe370ac99d4b1aafd4af76295f0

  • SHA512

    78f042d4c9d4587fc18a513c129d0d105ce92ea9bb7f6d6c4c57350bf56f370f43f3979047483a013fba9a2be6101f54747bc58995edd26aa224a915be610512

  • SSDEEP

    6144:xrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iiH:xrkau6/eIo43ts7KcXgXAN7i6

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3d2ef565eabe06ff90f2ccf98ac39a0f03c50fe370ac99d4b1aafd4af76295f0.exe
    "C:\Users\Admin\AppData\Local\Temp\3d2ef565eabe06ff90f2ccf98ac39a0f03c50fe370ac99d4b1aafd4af76295f0.exe"
    1⤵
    • Loads dropped DLL
    PID:688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\Tsu9504FFC3.dll
    Filesize

    5KB

    MD5

    4c82fc9dd04f97ed444c0722bb5b3335

    SHA1

    36c7d5aeb64ffe018ed396c389ab69c42fc6d4fd

    SHA256

    810d78ca77fb07e4914af89163e552166ea5844e7f818f9220971bcdf96dac3a

    SHA512

    2f44c5f5bfa721ab7749c9bc80b230cf681c5672111921e4d09d63c07a791aad940c3860afe80e5d0759919987f3f9d83a9e698d0b03fd9bfa3c0726438aa62d

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{D52AC9E6-6A40-43F5-A11E-22620EC9EB10}\Custom.dll
    Filesize

    7KB

    MD5

    6b12a407435a3dfde53861168fca6bd4

    SHA1

    e17f9476ea908a516d9711f12bab59f7ff06d791

    SHA256

    4fc898a66682be8f480410ead6e242fe2cbd96e0f26bdfc4e7e906834ee460d6

    SHA512

    4f5870d94c2586187fef9e379293fb69894fa2530618bf81c6cfb6d70ac85d4e395ba840c85e3cfd8fac55d2bb888eb10eff9a16804f156edeb6a0d9921d9226

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{D52AC9E6-6A40-43F5-A11E-22620EC9EB10}\_Setup.dll
    Filesize

    13KB

    MD5

    fc9c781427dee3a148e07ef193783d78

    SHA1

    91bf93b3f4cb89e3800ac123fe5a104f0a6a7b26

    SHA256

    29a97e0e49d308f62bdd2b3600799ff17b73840ec0fe2ef6be1cc38d0d46da3f

    SHA512

    ce5adf5b6691d8ba1ac813f3fdf27e160d3b1f9226df3f24dc9e60fe9cc6022447b16400d7e88f8c1f68900f3b4bedef8d9b801a99f730995c1205123a3a37a7

    Download Submit

  • memory/688-55-0x0000000074D61000-0x0000000074D63000-memory.dmp

    Filesize

    8KB

    Download