Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

7c2978d60e...5f.exe

windows7-x64

1

7c2978d60e...5f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    153s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/12/2022, 11:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7c2978d60e32bd5b46ff0588e45c7471baa642978dd7b3668b189c96991d275f.exe

  • Size

    708KB

  • MD5

    011a2865bb54c97ec7598f137c188b30

  • SHA1

    6a15071323440087bee405f29fd038cd1d120cf9

  • SHA256

    7c2978d60e32bd5b46ff0588e45c7471baa642978dd7b3668b189c96991d275f

  • SHA512

    89b47a1f7daf561b8bfb93a8dfe92a9d2eb0b1dea0bc2ab9db86f3510d38f61666047d6168d388a3fbb5c31dd5d164cd6536882576c0a5227063b93125d09adb

  • SSDEEP

    12288:8cy/DBtujLOFHgxsOhqJ28IOmJvr/r4cFZNC8z/RGHD4z5xFlV:8cyrBq4JOvYuNC8rKe

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\7c2978d60e32bd5b46ff0588e45c7471baa642978dd7b3668b189c96991d275f.exe
    "C:\Users\Admin\AppData\Local\Temp\7c2978d60e32bd5b46ff0588e45c7471baa642978dd7b3668b189c96991d275f.exe"
    1⤵
      PID:4904
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4904 -s 564
        2⤵
        • Program crash
        PID:4488
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4904 -s 564
        2⤵
        • Program crash
        PID:1040
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 464 -p 4904 -ip 4904
      1⤵
        PID:1016
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -pss -s 508 -p 4904 -ip 4904
        1⤵
          PID:1740

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/4904-133-0x0000000000681000-0x00000000006B1000-memory.dmp

          Filesize

          192KB

          Download

        • memory/4904-132-0x000000000060C000-0x000000000060F000-memory.dmp

          Filesize

          12KB

          Download

        • memory/4904-134-0x0000000002791000-0x0000000002845000-memory.dmp

          Filesize

          720KB

          Download