a119252b0d827af5bac88144d32f3e54859078f2cc4f4dfa12c9966437b8b02b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

TbmSetup.exe

windows10-1703-x64

1

Analysis

max time kernel
50s
max time network
143s
platform
windows10-1703_x64
resource
win10-20230220-en
resource tags

arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
submitted
29/05/2023, 23:59

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

TbmSetup.exe

Resource

win10-20230220-en

windows10-1703-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

TbmSetup.exe
Size

140.1MB
MD5

fc4e14a446dc133a5a0b599af53e82ad
SHA1

9ea67da15c48d9854be2e84e804efd7082f2ce67
SHA256

a119252b0d827af5bac88144d32f3e54859078f2cc4f4dfa12c9966437b8b02b
SHA512

e6231e82622d126fff744cbdc349164b4148b976a6307f66455dd672485ff6a1738014d2040c5dd50759bb559545e5be5f75473d2e34eae01afef76cb96340ca
SSDEEP

1572864:42Cm7gJKfVjsPawuFHNwczWTeMkF7ZEk8bCkKbj:/aodJFek8+k

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\TbmSetup.exe
"C:\Users\Admin\AppData\Local\Temp\TbmSetup.exe"
1⤵
PID:4336

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:2292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy