Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

e89637424b...d7.exe

windows7-x64

6

e89637424b...d7.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    41s
  • max time network
    45s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2022, 08:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e89637424b02d6480ad20058329945ec6d056f828150ad6357d0a3e04638bfd7.exe

  • Size

    224KB

  • MD5

    08082a828f43719f220e165de3551be0

  • SHA1

    39adf232f3a20e3e9be992c211c511454b811384

  • SHA256

    e89637424b02d6480ad20058329945ec6d056f828150ad6357d0a3e04638bfd7

  • SHA512

    f9fe9e561ad59a7d8586b3f9063e2a8b7fe3f5957bd4712d94a016bbfd7ef8b4686b47398f2d6d327dcf275d0a05fd67f351b4f992519247460f6a26207e1726

  • SSDEEP

    3072:HffDH1eqz1QoVFF2wW3kOSYQFzSMbq7j3LkeHrFnvQKKnvxOY7c/6JoRO6UrYsP:HfZZuoVFPWY1+33AqFIKKZOSc/I8sP

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e89637424b02d6480ad20058329945ec6d056f828150ad6357d0a3e04638bfd7.exe
    "C:\Users\Admin\AppData\Local\Temp\e89637424b02d6480ad20058329945ec6d056f828150ad6357d0a3e04638bfd7.exe"
    1⤵
    • Drops file in Windows directory
    PID:1980

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1980-54-0x0000000075521000-0x0000000075523000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1980-55-0x0000000000230000-0x000000000025F000-memory.dmp

    Filesize

    188KB

    Download