Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

setup.exe

windows7-x64

1

setup.exe

windows10-2004-x64

3

Resubmissions

02/07/2023, 18:51

230702-xhxrwade9x 3

02/07/2023, 18:51

230702-xhkgjsde9w 3

Analysis

  • max time kernel
    9s
  • max time network
    15s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230621-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230621-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/07/2023, 18:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    setup.exe

  • Size

    359KB

  • MD5

    0143f0a9d8ec33e98b94ab52f6ecefff

  • SHA1

    524774026300243bd4326bce64c6174b225da636

  • SHA256

    aec3ff058065df87c6eb2f5f654c27a9c56f72a053661fcbe8a4193e26fd486a

  • SHA512

    fb8d2749d415d3ae1b58bb9a52aa7d4c265a3f9d279de9b3980bc933c81625d48d3432ba81d9792e64e2a63248069d554b748258ce564c354aed5048e585e958

  • SSDEEP

    6144:ARBCA7EeORCGn0rxv9TGF9/Mg1g3NqH9wXfCze2EXXaNXeEBkz4nF/gs:Y/E/8G0rxpGXV1g3NqHOXfCzEXXahDwi

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\setup.exe
    "C:\Users\Admin\AppData\Local\Temp\setup.exe"
    1⤵
      PID:2220
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 2220 -s 1344
        2⤵
        • Program crash
        PID:2788
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 444 -p 2220 -ip 2220
      1⤵
        PID:1296

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/2220-133-0x00000000020D0000-0x000000000211B000-memory.dmp

        Filesize

        300KB

        Download

      • memory/2220-138-0x00000000020D0000-0x000000000211B000-memory.dmp

        Filesize

        300KB

        Download