Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    143s
  • max time network
    134s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/02/2023, 08:34

General

  • Target

    8edb730282cad396bb32902d7112dc1dcc9fd734d7d774ed39f1f869a5f37c0b.exe

  • Size

    674KB

  • MD5

    f2c5f477b01299298696c253d74a4263

  • SHA1

    7dd0c64c4a27f1396e8a7560e9052c6b23b4d623

  • SHA256

    8edb730282cad396bb32902d7112dc1dcc9fd734d7d774ed39f1f869a5f37c0b

  • SHA512

    8944cd200e51708d62d64757b5210f071bd8050ebc1fc75adef858a13277abf55ea1a6f645d0a4e768af8680d6eb618779138bdf624c426885dabdb5786d628d

  • SSDEEP

    12288:sIEtsfvYX1uWPNpgFYqeJhC8ETj092LOD9M6:sI0h1BXHqYQ8o0ELg9

Score
6/10

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

  • Modifies Internet Explorer settings 1 TTPs 6 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8edb730282cad396bb32902d7112dc1dcc9fd734d7d774ed39f1f869a5f37c0b.exe
    "C:\Users\Admin\AppData\Local\Temp\8edb730282cad396bb32902d7112dc1dcc9fd734d7d774ed39f1f869a5f37c0b.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:4972

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads