Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
144s -
max time network
168s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
31/10/2022, 00:59 UTC
General
-
Target
b47acf935825e0cfaca3121e2727e31400c851265ed628fa2736767e0642d987.exe
-
Size
47KB
-
MD5
a15a4043562743264fa88f3576455eb0
-
SHA1
98ed52960814c9beae79b70a18a929d92214721f
-
SHA256
b47acf935825e0cfaca3121e2727e31400c851265ed628fa2736767e0642d987
-
SHA512
e65913f23d44a313535b2c6878bd50eb3e169bdba50c175758a6b86407003c80f2c51a76feda9b8df74fe30dc5ebdcd40dee63a7ad2a7965b3a20d209123cc16
-
SSDEEP
768:0ORCDthQTQW77BIaivJ/mncu+lWJPdPuWxIUygVRQy0LLjp7TJPjUO:TChQTQmB2vJ/4cHloFPXDyLy0bpq
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\b47acf935825e0cfaca3121e2727e31400c851265ed628fa2736767e0642d987.exe"C:\Users\Admin\AppData\Local\Temp\b47acf935825e0cfaca3121e2727e31400c851265ed628fa2736767e0642d987.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4320 -s 3242⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 4320 -ip 43201⤵
Network
- No results found
-
72.21.91.29:80 -
72.21.81.240:80
-
93.184.220.29:80
-
93.184.221.240:80
-
20.189.173.13:443
-
72.21.81.240:80
-
87.248.202.1:80 -
87.248.202.1:80
-
87.248.202.1:80
No results found
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
24KB