Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

12a80fcf72...01.exe

windows7-x64

6

12a80fcf72...01.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    32s
  • max time network
    51s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    27/11/2022, 07:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    12a80fcf72d029a0928bc075944aa3c4ff56c7cc90b96520f17c8f7636dd3601.exe

  • Size

    2.4MB

  • MD5

    6642ae7e164ee9937ea00ea3549a474b

  • SHA1

    745c522816b507bd128a705421ce94658a1dbe4f

  • SHA256

    12a80fcf72d029a0928bc075944aa3c4ff56c7cc90b96520f17c8f7636dd3601

  • SHA512

    8fe04926e1bce36517baacd01ddc8dcc968a1f40647a644361879a714f3272f0ed7539101155f1771f9aa2c985c96672ce4320c1e28970767fa106b99be2b132

  • SSDEEP

    6144:U2YnbQLlCyOqvU14Bap89QTdk10ICIqTK3SW9ubQGj3q6wE:bYnbQuqvm4O89QTRd/q6wE

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\12a80fcf72d029a0928bc075944aa3c4ff56c7cc90b96520f17c8f7636dd3601.exe
    "C:\Users\Admin\AppData\Local\Temp\12a80fcf72d029a0928bc075944aa3c4ff56c7cc90b96520f17c8f7636dd3601.exe"
    1⤵
    • Drops file in Windows directory
    PID:1304

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1304-54-0x0000000075831000-0x0000000075833000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1304-55-0x00000000002F0000-0x000000000031F000-memory.dmp

    Filesize

    188KB

    Download