Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

About/samp...et.exe

windows7-x64

1

About/samp...et.exe

windows10-2004-x64

1

About/samp...gs.exe

windows7-x64

1

About/samp...gs.exe

windows10-2004-x64

1

About/samp...ss.exe

windows7-x64

1

About/samp...ss.exe

windows10-2004-x64

1

About/samp...ey.exe

windows7-x64

1

About/samp...ey.exe

windows10-2004-x64

1

About/samp...et.exe

windows7-x64

1

About/samp...et.exe

windows10-2004-x64

1

About/samp...gs.exe

windows7-x64

1

About/samp...gs.exe

windows10-2004-x64

1

About/samp...ss.exe

windows7-x64

1

About/samp...ss.exe

windows10-2004-x64

1

About/samp...ey.exe

windows7-x64

1

About/samp...ey.exe

windows10-2004-x64

1

Audaclty l...ns.exe

windows7-x64

10

Audaclty l...ns.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    8s
  • max time network
    41s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2023, 05:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    About/samples/aspnetmvc/libraries/Pscx/Apps/EchoArgs.exe

  • Size

    12KB

  • MD5

    b9df69bc56e095291233335da74413a9

  • SHA1

    f252849b60198cdf4deebaeb23a30c99ccf37300

  • SHA256

    4d74cd03d10eccac8dd8cca7b6e65f7c8f66770ffe3779a4e8cd05234dfb557b

  • SHA512

    bc73f41d1e0b6b13dda4da079003a309c62923d9756adcd6c70864d0d09ea48540cd82f43851b15468e0b9241f252cb09f15fdcd36f6adcd0215560a688ed7fe

  • SSDEEP

    96:wySn+xpIKqzNtdq3CDxX4vH2oZOJjcD2ArH2GntOuWDeXtz1H2HYOksKLTpIoH2x:vxfM7EkX4fTAYTbOuWaNMYO6K6CYbYR

Score
1/10

Malware Config

Signatures

  • Modifies system certificate store 2 TTPs 4 IoCs
    evasionspywaretrojan

Processes

  • C:\Users\Admin\AppData\Local\Temp\About\samples\aspnetmvc\libraries\Pscx\Apps\EchoArgs.exe
    "C:\Users\Admin\AppData\Local\Temp\About\samples\aspnetmvc\libraries\Pscx\Apps\EchoArgs.exe"
    1⤵
    • Modifies system certificate store
    PID:932

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads