Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

c0f40f593a...e7.exe

windows7-x64

8

c0f40f593a...e7.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/11/2022, 12:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0f40f593a163e5c82f079646bdc4f95b291c39318b6504a74c9d09490eebee7.exe

  • Size

    828KB

  • MD5

    a90d9b49ab27d76efeccbdf566539f0c

  • SHA1

    976197a9031b5c16a7a28c3c76eafcca5b7def7f

  • SHA256

    c0f40f593a163e5c82f079646bdc4f95b291c39318b6504a74c9d09490eebee7

  • SHA512

    cf787527b35639023a863668e08c8c3ee094cce7fd4b97c6e887b417adc0eb582dc68a680908873d448b016d12123040e31857d405c73c10f7988efd9f09b944

  • SSDEEP

    24576:XlH5JF9HN+6UdNTkJWMRXRo7dgFYFot5WGWk2DrHitjnXmfp:XlZJrHN+6gKBRS6FYCtCDjwn2fp

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 26 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Program crash 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c0f40f593a163e5c82f079646bdc4f95b291c39318b6504a74c9d09490eebee7.exe
    "C:\Users\Admin\AppData\Local\Temp\c0f40f593a163e5c82f079646bdc4f95b291c39318b6504a74c9d09490eebee7.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4984
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 4984 -s 808
      2⤵
      • Program crash
      PID:1196
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 4984 -ip 4984
    1⤵
      PID:2076

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4984-132-0x0000000000400000-0x00000000006AC000-memory.dmp

      Filesize

      2.7MB

      Download

    • memory/4984-133-0x0000000000400000-0x00000000006AC000-memory.dmp

      Filesize

      2.7MB

      Download

    • memory/4984-134-0x0000000000400000-0x00000000006AC000-memory.dmp

      Filesize

      2.7MB

      Download

    • memory/4984-135-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-138-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-139-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-137-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-140-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-142-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-144-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-146-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-148-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-150-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-152-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-154-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-156-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-158-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-160-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-162-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-164-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-166-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-168-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-170-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-172-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-174-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-176-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-178-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-180-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-181-0x0000000000400000-0x00000000006AC000-memory.dmp

      Filesize

      2.7MB

      Download

    • memory/4984-182-0x0000000010000000-0x000000001003E000-memory.dmp

      Filesize

      248KB

      Download

    • memory/4984-183-0x0000000000400000-0x00000000006AC000-memory.dmp

      Filesize

      2.7MB

      Download