Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
256s -
max time network
287s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
-
submitted
01/12/2022, 17:18 UTC
General
-
Target
cff33d4af6afe05d33404c528dada7c8e5b37bc18c2866613b4bd52b4bc2a082.exe
-
Size
62KB
-
MD5
bc76b0d619cf1f5d7150cb9ffd06603c
-
SHA1
608df9a628dd44b716cfc807c5d2056111fec0ab
-
SHA256
cff33d4af6afe05d33404c528dada7c8e5b37bc18c2866613b4bd52b4bc2a082
-
SHA512
8b6aa37d2a14c022f0c2d646246324f3ffa43cd9f2a5e006f6302fd6b53b1d335cec9f26a67b425efd65cc714a06a13432a398ada1a3f2ffffd9906ebfbf6575
-
SSDEEP
1536:4AbZrnrUC7j3W3IlwVJHqXS5hS6oKsRq5cd8/tlyoL0G6xUy:/bJrUq7KqC5hStKsRq5cdwyooHx/
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\cff33d4af6afe05d33404c528dada7c8e5b37bc18c2866613b4bd52b4bc2a082.exe"C:\Users\Admin\AppData\Local\Temp\cff33d4af6afe05d33404c528dada7c8e5b37bc18c2866613b4bd52b4bc2a082.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4208 -s 2962⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4208 -ip 42081⤵
Network
-
DNS14.110.152.52.in-addr.arpaRemote address:8.8.8.8:53Request14.110.152.52.in-addr.arpaIN PTRResponse
-
8.238.20.126:80
-
20.44.10.123:443
-
93.184.220.29:80
-
8.238.20.126:80
-
8.238.20.126:80
-
104.80.225.205:443
-
204.79.197.203:80
-
8.238.20.126:80
-
8.238.20.126:80
-
8.8.8.8:5314.110.152.52.in-addr.arpadns
DNS Request
14.110.152.52.in-addr.arpa
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
144KB
-
Filesize
144KB