Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

9a7633ff8a...3a.exe

windows7-x64

8

9a7633ff8a...3a.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    141s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/12/2022, 11:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9a7633ff8ae872358f1942d1869b0788e69da97e7c7e976dab54067181dc523a.exe

  • Size

    34KB

  • MD5

    33cc6acf45f1a9eaa6dc1677ed9ee535

  • SHA1

    a68c6a328920a2fb273144997a9f4e9435a4240a

  • SHA256

    9a7633ff8ae872358f1942d1869b0788e69da97e7c7e976dab54067181dc523a

  • SHA512

    75567cc47df8a4a54130c748a329483ad951561a9841e19b77ff7f22f74792df72e7557adcda72e767f85bb8b73a3d5de36fb0889aa593f048d1e3c8df13f112

  • SSDEEP

    768:aYZ9TjWPV75tw0Km5tS5k850NIq8h8zy1ARkrXgAmL5sToj:HT6Pfm0KmCkO8muRkrXwL5sT

Score
8/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9a7633ff8ae872358f1942d1869b0788e69da97e7c7e976dab54067181dc523a.exe
    "C:\Users\Admin\AppData\Local\Temp\9a7633ff8ae872358f1942d1869b0788e69da97e7c7e976dab54067181dc523a.exe"
    1⤵
      PID:5056
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 5056 -s 420
        2⤵
        • Program crash
        PID:1704
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 5056 -ip 5056
      1⤵
        PID:4932

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/5056-132-0x0000000015110000-0x0000000015151000-memory.dmp

        Filesize

        260KB

        Download

      • memory/5056-133-0x00000000009B0000-0x00000000009B4000-memory.dmp

        Filesize

        16KB

        Download

      • memory/5056-134-0x0000000015110000-0x0000000015151000-memory.dmp

        Filesize

        260KB

        Download