Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
42s -
max time network
34s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
-
submitted
25/05/2023, 08:47
General
-
Target
M7R47913.exe
-
Size
7.0MB
-
MD5
d86486fdcc9747b5ccf9a246dfa727dd
-
SHA1
e580268cebc790fc7ec88cb019731f0c903a1a15
-
SHA256
58428d81dab5ddde27d35078c1a775dc6bffa4a815dad9779e9f6eeaa19dd877
-
SHA512
7555efdee463de2cffe2ea6afa1edf12cf5a2bc4ad752a88d361f1fca9b91e37db082317e98cea2554ede5e94a4d25e0a18075d32974ad8cb99f0cbc48d80f9a
-
SSDEEP
98304:Bo82lrwQnUKp8wut0BdTJAVp9jgeVpBiqLUBH76Pva0yTIpOmn2w9NAHr:ByfUew0BdaH3BfUKvac2aNS
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
-
Loads dropped DLL 1 IoCs
-
Adds Run key to start application 2 TTPs 2 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\M7R47913.exe"C:\Users\Admin\AppData\Local\Temp\M7R47913.exe"1⤵
- Loads dropped DLL
- Adds Run key to start application
- Suspicious use of WriteProcessMemory
-
C:\ProgramData\FavoritesDesktop-SYQ237.1.8.6\FavoritesDesktop-SYQ237.1.8.6.exeC:\ProgramData\FavoritesDesktop-SYQ237.1.8.6\FavoritesDesktop-SYQ237.1.8.6.exe2⤵
- Executes dropped EXE
-
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
757.0MB
MD5e3c92a18d95db0083ec4e0e340a78a87
SHA142c2db1c711a58d9217c3055751913c8bf6d7c26
SHA256108369cf181018332525f1a450577cc5d132e6d23e5644bd6184da2c230712ca
SHA5124013d92596a2dfbca75e2cfb267cd97ce692b19862cb4509456ad3da98b7dffcd004f03a3c99d8cb43dda136307abdc1bfb9b7869e13383d362edc1de6fb91ab
-
Filesize
757.0MB
MD5e3c92a18d95db0083ec4e0e340a78a87
SHA142c2db1c711a58d9217c3055751913c8bf6d7c26
SHA256108369cf181018332525f1a450577cc5d132e6d23e5644bd6184da2c230712ca
SHA5124013d92596a2dfbca75e2cfb267cd97ce692b19862cb4509456ad3da98b7dffcd004f03a3c99d8cb43dda136307abdc1bfb9b7869e13383d362edc1de6fb91ab
-
Filesize
7.0MB
-
Filesize
7.0MB