Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

838ea371df...6b.exe

windows7-x64

7

838ea371df...6b.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    20s
  • max time network
    104s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29/10/2022, 08:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe

  • Size

    313KB

  • MD5

    ecea9c9430044d8b326e2a1fd4963558

  • SHA1

    68c5c67d22b9966bd69e3a7acfc30be9a314baca

  • SHA256

    838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b

  • SHA512

    98ea83350f9fa6c3e23e69ffa44d12f528d47f9af08604f3b1f35288aa4689c9d13e901e38b2c26d6aae7817b29ae5f19001585778084e91bc167459e3c820e1

  • SSDEEP

    6144:FrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lm:Fryu6/eIo4vMResyEf0uP9d9UG0m

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe
    "C:\Users\Admin\AppData\Local\Temp\838ea371df2dc98589fff4a776b397f78e139bf03abe2f62febc32b72871e26b.exe"
    1⤵
    • Loads dropped DLL
    PID:1896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\TsuB0C06B37.dll
    Filesize

    35KB

    MD5

    b9bf20a87c386427f31d3f811dad653d

    SHA1

    dfdc792f08635fd816e1f3218de590089e167050

    SHA256

    b2eb15ae2364ca5bd4d1458f4c713ffd18b66381e4f58940cf390665274894ac

    SHA512

    0e4bef0e8e96e138ece945bed7ca0173d0f9e3561217e96f6f484fdc88563441d2a4c9f7d2bac6c152cd7bfd230a199309ba6973a4eff82fc1b4f0417e892e6f

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{E8C45214-1711-407B-A290-5F33332770E2}\Custom.dll
    Filesize

    32KB

    MD5

    ff28e84cdc2f0a440307627a589bc819

    SHA1

    7228ad04f3c99f2c2a7dc63e5c495a929a1a5720

    SHA256

    b63720ef7d0cb231f9f7eb9fba5126eecf92e3d609b3ef62edc49fd5d194d60b

    SHA512

    7d61db2cf30b4d18f4bdce9d73147923de56ae09031413ce78a24512c39b5a897c1cd9cb511aed84edf88e13d678128d1d1e6bd8d5de16593c086f101ff7186f

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{E8C45214-1711-407B-A290-5F33332770E2}\_Setup.dll
    Filesize

    13KB

    MD5

    76e541c42d696fc12e5cf31f1670bef4

    SHA1

    c4308098ef4cbc068b4f4d17501031d296465662

    SHA256

    0b3ea1503858aeb44f2f7bbd8d8abba38799674a554990308875e8591e03ebd3

    SHA512

    8d183543ecc6ef5c42e4108daebd8e278a1c5a9677e042a846fc0bd6df3947ac9d89f4905fe6bb4d2f5339cd09ebcabe04d8cb6ee95a2c87835801f7eee27a5f

    Download Submit

  • memory/1896-55-0x0000000076041000-0x0000000076043000-memory.dmp

    Filesize

    8KB

    Download