Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

dms_default

windows10-2004-x64

1

dms_fakenet

windows10-2004-x64

1

Analysis

  • max time kernel
    110s
  • max time network
    113s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/05/2023, 12:16 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    618.zip

  • Size

    69KB

  • MD5

    47003cb8ca93905e548d94c98e9d9414

  • SHA1

    57886dab7091a647023da1886dc082cce8386231

  • SHA256

    7ce8d5d11f8855a4522c37b1ad7096634c7371411d7a7d2307f5f8cd03c97268

  • SHA512

    55077592e01c38d83b14fd497c126c902f032c637916ec8868b2c7eacf1c65d1cb94ec8c6830e2b8134672aeff47bfa366fc6ae02b19f82b2fb36da705122825

  • SSDEEP

    1536:p2p9lUlxylGmq98OTafV1BfH/INx2Ay2mg8N7qVhuxn7P8e:p89llln4AVD/bMm0hux7P8e

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\Explorer.exe
    C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\618.zip
    1⤵
      PID:3328

    Network

    • flag-us
      DNS
      92.144.123.100.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      92.144.123.100.in-addr.arpa
      IN PTR
      Response
      92.144.123.100.in-addr.arpa
      IN A
      100.104.158.227
    • flag-us
      DNS
      12.107.104.100.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      12.107.104.100.in-addr.arpa
      IN PTR
      Response
      12.107.104.100.in-addr.arpa
      IN A
      100.105.150.185
    • flag-us
      DNS
      187.107.74.100.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      187.107.74.100.in-addr.arpa
      IN PTR
      Response
      187.107.74.100.in-addr.arpa
      IN A
      100.81.213.59
    • flag-us
      DNS
      2.36.159.162.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      2.36.159.162.in-addr.arpa
      IN PTR
      Response
      2.36.159.162.in-addr.arpa
      IN A
      100.77.183.18
    • flag-us
      DNS
      187.107.74.100.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      187.107.74.100.in-addr.arpa
      IN PTR
      Response
      187.107.74.100.in-addr.arpa
      IN A
      100.83.83.0
    • flag-us
      DNS
      196.102.121.100.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      196.102.121.100.in-addr.arpa
      IN PTR
      Response
      196.102.121.100.in-addr.arpa
      IN A
      100.108.202.121
    • 52.182.143.210:443
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 173.223.113.164:443
      322 B
       7
    • 173.223.113.131:80
      322 B
       7
    • 204.79.197.203:80
      322 B
       7
    • 8.8.8.8:53
      92.144.123.100.in-addr.arpa
      dns
      73 B
       116 B
       1
      1

      DNS Request

      92.144.123.100.in-addr.arpa

      DNS Response

      100.104.158.227

    • 8.8.8.8:53
      12.107.104.100.in-addr.arpa
      dns
      73 B
       116 B
       1
      1

      DNS Request

      12.107.104.100.in-addr.arpa

      DNS Response

      100.105.150.185

    • 8.8.8.8:53
      187.107.74.100.in-addr.arpa
      dns
      73 B
       116 B
       1
      1

      DNS Request

      187.107.74.100.in-addr.arpa

      DNS Response

      100.81.213.59

    • 8.8.8.8:53
      2.36.159.162.in-addr.arpa
      dns
      71 B
       112 B
       1
      1

      DNS Request

      2.36.159.162.in-addr.arpa

      DNS Response

      100.77.183.18

    • 8.8.8.8:53
      187.107.74.100.in-addr.arpa
      dns
      73 B
       116 B
       1
      1

      DNS Request

      187.107.74.100.in-addr.arpa

      DNS Response

      100.83.83.0

    • 8.8.8.8:53
      196.102.121.100.in-addr.arpa
      dns
      74 B
       118 B
       1
      1

      DNS Request

      196.102.121.100.in-addr.arpa

      DNS Response

      100.108.202.121

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.