Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

97fe8f5edf...a1.exe

windows7-x64

8

97fe8f5edf...a1.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    311s
  • max time network
    392s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/11/2022, 04:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    97fe8f5edf161a026720214998f095ab564871f43a75ef70d4963d6c8147dca1.exe

  • Size

    91KB

  • MD5

    ea03c86beddd63fc65795178d33df9c3

  • SHA1

    14eb5fcbc306b5106e9f75fe0a1f5c84528a8a4a

  • SHA256

    97fe8f5edf161a026720214998f095ab564871f43a75ef70d4963d6c8147dca1

  • SHA512

    a8f5ab4eba1d5e060ca1d6aa1999676e7c348a81f57d8309d6ad247552c9c19efe9dbcc38ba0a87a86b2fff395c74e48f2165860f70f68becb74e3b60705705e

  • SSDEEP

    1536:4xOawsp8Ga0fIi/zNbTFTex+1Tjc6F/hpnqRa7CI:4Rp8cHNF+MPcMnnpT

Score
4/10

Malware Config

Signatures

  • Drops file in Program Files directory 7 IoCs
  • Drops file in Windows directory 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\97fe8f5edf161a026720214998f095ab564871f43a75ef70d4963d6c8147dca1.exe
    "C:\Users\Admin\AppData\Local\Temp\97fe8f5edf161a026720214998f095ab564871f43a75ef70d4963d6c8147dca1.exe"
    1⤵
    • Drops file in Program Files directory
    • Drops file in Windows directory
    • Suspicious behavior: EnumeratesProcesses
    PID:2336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2336-132-0x0000000000400000-0x00000000012FA141-memory.dmp

    Filesize

    15.0MB

    Download