Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
114s -
max time network
34s -
platform
windows7_x64 -
resource
win7-20221111-en -
resource tags
arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system -
submitted
03/12/2022, 09:21
Static task
static1
Behavioral task
behavioral1
Sample
a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe
Resource
win7-20221111-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe
-
Size
4.3MB
-
MD5
64c18323c475143aac4225c1cf2f8f75
-
SHA1
207cd3681719c5f515172e03e7fdf40e2c195c23
-
SHA256
a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae
-
SHA512
e998d86aee8d797a11abee6c63e3baae306527dec86880c2a3850f9eb910195cec8b22671daf58ce386a00831607169062fdd573b6f12858e429b6e5cff04b72
-
SSDEEP
768:tks+cAXJpB2TgpZnjJHk/OxJ+oFEZEM/43:tjrAX5NjJHJ+oFE2M/43
Score
6/10
Malware Config
Signatures
-
Adds Run key to start application 2 TTPs 1 IoCs
description ioc Process Set value (str) \REGISTRY\MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run\VMIntel386 = "C:\\Windows\\Intelx386\\VMIntel386.exe 256mb 32bit" a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe -
Drops file in Windows directory 64 IoCs
description ioc Process File created C:\Windows\Intelx386\Mazinkaiser pack fondos de escritorio.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Juegos JAVA para NOKIA.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Silent Hill.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Visual Studio (full).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Fuck my fat ass.avi.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pack 50 Juegos PS2.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\mugen (full).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Dont Download.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Winamp 3.5 (full version).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\FlashGet Max acceleration (Experimental).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\BsPlayer v3.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Simpsons pack guiones (Temporada 2004).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Follada brutal coño roto.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\DivX 7.2 freeware.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pack 25 Juegos GameCube.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Dont Touch.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Shinchan screen saver.scr a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Chenoa en cueros.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\VMIntel386.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\ContaWin 2000 (full version).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Visual C.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\German extreme violation.mpg.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Hentai.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Update Photoshop 8.0 to Photoshop 9.5 (It´s Work!).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\3D Studio R8 (It's Work!!).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WinRar 4 (with crack).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Mazinkaiser comics pack.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\PSEmu.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\GameCube Emulator.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Puta come mierda.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\MSN messenger 6.3.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Capitulos ineditos de DragonBall Z jamas emitidos.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Visual Basic 6.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Solo para Maricas.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Hacha Profesional Edition.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\3D Movie Maker.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Resident Evil for GameCube.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Hentai Shizuka clit.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Winamp 5.0 (full version).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WinAce 3.85 (with Serial).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\RealOne Player (Full version).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\RM2GBA.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Sexo con una menor.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pedofilia pack 37 pics.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Hentai Evangelion Poker.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pack sex very hot nude young girl porn erotic private pussy rape clitoris suck chicas fotos culos tetas coños mamadas corridas sister hermana amigas friends lesbianas mujeres desnudas putas guarras hentai.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Winamp 3 (full version).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Update Photoshop 7.0 to Photoshop 9.16 (It´s Work!).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pack Tonos y Logos para Nokia.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\GBAEmu.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WinZip 9.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WAV2MP3.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Lolita Pack 20 Pics.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\humor.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Matrix Wallpapers.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WinRar v6.11 (with crack).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Nero 7.5.1.0 (cracked!).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Pack Photoshop CS 8 plugins.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Download Accelerator Plus (DAP) (full version with serial).exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\VirtualDub 2.1.4.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\No lo Descargues.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\Terminator 3 Wallpapers.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\a pelo.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe File created C:\Windows\Intelx386\WinAmp skings and plugins.exe a0da4b2dc6d3fec887704b8ea7553e4c5330672e1e139670af31fda4cf23abae.exe