Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

ef9fb782de...3e.exe

windows7-x64

8

ef9fb782de...3e.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    303s
  • max time network
    317s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/12/2022, 03:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef9fb782de436f82adb1abb81451f6f936a758a443ecd56aee527beb675d4a3e.exe

  • Size

    307KB

  • MD5

    b4b8da1e7dc36ef2c99c300db2a65bd0

  • SHA1

    cb22398bce74743b86a99cb2cc58cc52fc801ade

  • SHA256

    ef9fb782de436f82adb1abb81451f6f936a758a443ecd56aee527beb675d4a3e

  • SHA512

    95cb8864ea954e83f72b54f03e432b1bc6c9820ae3345446ac1942113a84b6e70158f6dcc655469c16678253a7fa7f78c0bf71e5cb129265ea3b023511ffef71

  • SSDEEP

    6144:IyGxr7rLrLrLrbrrrxB0pY4VE/RHn6OoGt+yKoUV7u6YhVdG+AbQuTsZR7i8ipxF:5Gxr7rLrLrLrbrrrxB0S4gn6iH0s7Pzb

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ef9fb782de436f82adb1abb81451f6f936a758a443ecd56aee527beb675d4a3e.exe
    "C:\Users\Admin\AppData\Local\Temp\ef9fb782de436f82adb1abb81451f6f936a758a443ecd56aee527beb675d4a3e.exe"
    1⤵
      PID:388
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 388 -s 524
        2⤵
        • Program crash
        PID:1348
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 388 -ip 388
      1⤵
        PID:2376

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads