Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

8

44251fd25c...ad.exe

windows7-x64

9

44251fd25c...ad.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    39s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    30/10/2022, 16:53 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44251fd25ce6a5fc4ed7b1c8656345d22ec9a743e099baa6983bf0326b1d5bad.exe

  • Size

    301KB

  • MD5

    82208b92133435d0bf8c0ee0f41c4d40

  • SHA1

    406c8d7286631cd8748f84ee193c3b39d5d9628f

  • SHA256

    44251fd25ce6a5fc4ed7b1c8656345d22ec9a743e099baa6983bf0326b1d5bad

  • SHA512

    9d3c2f8c285c736bc00d78158f8bb33fc68a2025f75fb140954eecfa75c2b356f6fbb7a3faa0afb531ddfc5f117b31bac22d98d69713255da9c1c0b3cf9501eb

  • SSDEEP

    6144:dBy0g+PuXtNqzhMZZ16K3uOgBwl2gF1sT9CpvqL:dBy0PuXt0IZ16pA2Sgj

Score
9/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\44251fd25ce6a5fc4ed7b1c8656345d22ec9a743e099baa6983bf0326b1d5bad.exe
    "C:\Users\Admin\AppData\Local\Temp\44251fd25ce6a5fc4ed7b1c8656345d22ec9a743e099baa6983bf0326b1d5bad.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\uik58CB.tmp
    Filesize

    172KB

    MD5

    685f1cbd4af30a1d0c25f252d399a666

    SHA1

    6a1b978f5e6150b88c8634146f1406ed97d2f134

    SHA256

    0e478c95a7a07570a69e6061e7c1da9001bccad9cc454f2ed4da58824a13e0f4

    SHA512

    6555ad6b4f4f26105ca8aad64501d74519a3e091f559b4b563d6ffb20a2ddfcde65e4fe94971a9bc65e86db577f2548ca00f9920d341c8ea808b04c0947d61d9

    Download Submit

  • memory/1340-54-0x0000000076041000-0x0000000076043000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1340-56-0x0000000000400000-0x0000000000441000-memory.dmp

    Filesize

    260KB

    Download

  • memory/1340-57-0x0000000001C30000-0x0000000001CA3000-memory.dmp

    Filesize

    460KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.