Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
130s -
max time network
32s -
platform
windows7_x64 -
resource
win7-20221111-en -
resource tags
arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system -
submitted
29/11/2022, 11:46
Static task
static1
Behavioral task
behavioral1
Sample
9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe
Resource
win10v2004-20220812-en
General
-
Target
9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe
-
Size
616KB
-
MD5
7f0d0e8f86067f75af8dd996bd2426b3
-
SHA1
7c1d8a5e86d6782734f431c67ade640d4c0534b7
-
SHA256
9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82
-
SHA512
f0876dfe7d05a20f7588dd5e5f7d44abb5eaccbf27cb8f3e868750459e685f3d108fa29da6864fac0fc51f15a34078339b67dba9972fb444dd38f8a99b006fa2
-
SSDEEP
12288:AMSmO+iqR4k5cZU1BHSpjTUClcaz/fV0AFCrv+9UCRRW4pMaAj:BSmO+iqQUPHSpjTUWc61V8r+9xRRWJj
Malware Config
Signatures
-
Suspicious use of FindShellTrayWindow 3 IoCs
pid Process 1300 9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe 1300 9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe 1300 9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1300 9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe 1300 9d5e3fa5c237fd07e0beb4513fc02d5847c5592e08443ddfdedf2dfc4bf9da82.exe