Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

ab5e1aff89...aa.exe

windows7-x64

8

ab5e1aff89...aa.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    153s
  • max time network
    160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2022, 10:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab5e1aff89b3374e8a1ddc4f5855c39dd55141bf0bcb4748cafd792f8972e7aa.exe

  • Size

    150KB

  • MD5

    2a2a9e2ead1ae755c24785fe49bca4a5

  • SHA1

    eeccf08a71f784d8d1ec21a4541e854535a45b7d

  • SHA256

    ab5e1aff89b3374e8a1ddc4f5855c39dd55141bf0bcb4748cafd792f8972e7aa

  • SHA512

    69e53afbd5e100a9cf10f37fec22a53349115470672a2ebe7b4113cb0767d8b9464e493fb5497cb24162d3b5408a2d68cc00228fdeb8593185832170fbd24905

  • SSDEEP

    1536:/DGT3sekJ/tdK3F5INuBwX0zuCYSu2SN0tCj/WAvN3EcyEnOs4wwa:/A3seedK0NdX+Y32SOEvXjwa

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\ab5e1aff89b3374e8a1ddc4f5855c39dd55141bf0bcb4748cafd792f8972e7aa.exe
    "C:\Users\Admin\AppData\Local\Temp\ab5e1aff89b3374e8a1ddc4f5855c39dd55141bf0bcb4748cafd792f8972e7aa.exe"
    1⤵
      PID:1920

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1920-132-0x0000000010000000-0x000000001000E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/1920-136-0x0000000000400000-0x0000000000457000-memory.dmp

      Filesize

      348KB

      Download

    • memory/1920-137-0x0000000000400000-0x0000000000457000-memory.dmp

      Filesize

      348KB

      Download