Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

89c4a145f1...b6.exe

windows7-x64

1

89c4a145f1...b6.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    19s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    05/12/2022, 20:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    89c4a145f1a94a497c6aabb828956f38344b23a5682bac2d9fff5c7d5b2a2cb6.exe

  • Size

    91KB

  • MD5

    46caef7a65add05d913fed3f8e0970ed

  • SHA1

    b9942ce8e50b2958fa0a07ef5b5c6ed0e6e48d9d

  • SHA256

    89c4a145f1a94a497c6aabb828956f38344b23a5682bac2d9fff5c7d5b2a2cb6

  • SHA512

    ab403a51e9262ce8368feed2da80c21f71ee75af0f93da9f890096ef96aa910c9ec172ded7f663c7b543dcde717a8ef226a98a9cea03c04b33cb165aa105786d

  • SSDEEP

    1536:EGwtRxOBJyypgmDjVwCfIAIYfGJmIMWtEMfgjtEFK:NwtRonyypexoiNtxYGK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious behavior: MapViewOfSection 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\89c4a145f1a94a497c6aabb828956f38344b23a5682bac2d9fff5c7d5b2a2cb6.exe
    "C:\Users\Admin\AppData\Local\Temp\89c4a145f1a94a497c6aabb828956f38344b23a5682bac2d9fff5c7d5b2a2cb6.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: MapViewOfSection
    • Suspicious use of AdjustPrivilegeToken
    PID:1104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads