Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
187s -
max time network
211s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
03/12/2022, 02:29 UTC
Static task
static1
Behavioral task
behavioral1
Sample
fc8afcad92ebc22185d137da43f949beca029f7e2306cfdcd11817d21dd90dcb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
fc8afcad92ebc22185d137da43f949beca029f7e2306cfdcd11817d21dd90dcb.exe
Resource
win10v2004-20221111-en
General
-
Target
fc8afcad92ebc22185d137da43f949beca029f7e2306cfdcd11817d21dd90dcb.exe
-
Size
811KB
-
MD5
a06162d37cdfc2d4cc1bbd4f59834c1a
-
SHA1
533da4aaef0bcb140c61ba3d963451adbb471bd0
-
SHA256
fc8afcad92ebc22185d137da43f949beca029f7e2306cfdcd11817d21dd90dcb
-
SHA512
fe3856db75379b856faedca4ea08733bb6e669ca147fad515fb9f12e114df6effd3f336ec2767a3704c19f2a04191441626526b7500f96533af61925f7416e10
-
SSDEEP
12288:lAUmLwCXmaczY/QyATvFqH4ve1UBpP4hcZsx0nk0vRioohxPua1:+UmLpEzmATvFJTBF4u60nk0JioohYa1
Malware Config
Signatures
Processes
Network
-
Remote address:8.8.8.8:53Request151.122.125.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request7.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.0.0.0.2.0.0.0.0.2.0.1.3.0.6.2.ip6.arpaIN PTRResponse
-
322 B 7
-
322 B 7
-
260 B 5
-
260 B 5
-
260 B 5
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
322 B 7
-
260 B 5