Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

a6e97b7cf2...96.exe

windows7-x64

8

a6e97b7cf2...96.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    147s
  • max time network
    176s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/12/2022, 07:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6e97b7cf2aa5a34e61ad1a7c75e8fed15c5d688ba3fef84e00073641a618c96.exe

  • Size

    45KB

  • MD5

    2b7fd0735e9ba79284f36fe02a8985b6

  • SHA1

    137a3c87b9f372f883e79e8ce61597788625aadf

  • SHA256

    a6e97b7cf2aa5a34e61ad1a7c75e8fed15c5d688ba3fef84e00073641a618c96

  • SHA512

    5b0111a7ede6923ce03bc9a7f8d0b2ff3919bd46429d91a10b4f85ff3f5db7820678337edada169b8f4c23413baeaf1be86a67fce6c8423b0ee3d9014984767e

  • SSDEEP

    768:4Z2Y2usV7Gi7KOGM0g1no22wKJ2tlL12IsMBgph8Sz:kqV2M0gClwKJG1gI/gpxz

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a6e97b7cf2aa5a34e61ad1a7c75e8fed15c5d688ba3fef84e00073641a618c96.exe
    "C:\Users\Admin\AppData\Local\Temp\a6e97b7cf2aa5a34e61ad1a7c75e8fed15c5d688ba3fef84e00073641a618c96.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3032-134-0x0000000000400000-0x000000000040D000-memory.dmp

    Filesize

    52KB

    Download

  • memory/3032-135-0x0000000000400000-0x000000000040D000-memory.dmp

    Filesize

    52KB

    Download