Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
24fb841fd911564455e110be0.exe
-
Size
592KB
-
Sample
230704-v6sfyshe3x
-
MD5
24fb841fd911564455e110be09838898
-
SHA1
26cd8755406627964ffcabc8a2addb8d1b8e2e48
-
SHA256
8dc089fd8fa7592e92ae50e19b2be9778db70fa4ca84af6f8dda27af4851faf5
-
SHA512
40e5a47a69ff3c673dc702ea4fc1bc7f57c78631846f03e474920fe648d8f742419f4cb150d2036cdaa1a9ce8d0308be05d463a73fd1e39d8d7924e6015d7367
-
SSDEEP
12288:Ig7K2UlLr6wvetUDTIdz0Azy1M9o+71ipwf92umFzUkuI:lZUlL2wveWvUYwb9o+ZiptucUw
Static task
static1
Behavioral task
behavioral1
Sample
24fb841fd911564455e110be0.exe
Resource
win7-20230703-en
Behavioral task
behavioral2
Sample
24fb841fd911564455e110be0.exe
Resource
win10v2004-20230703-en
Malware Config
Targets
-
-
Target
24fb841fd911564455e110be0.exe
-
Size
592KB
-
MD5
24fb841fd911564455e110be09838898
-
SHA1
26cd8755406627964ffcabc8a2addb8d1b8e2e48
-
SHA256
8dc089fd8fa7592e92ae50e19b2be9778db70fa4ca84af6f8dda27af4851faf5
-
SHA512
40e5a47a69ff3c673dc702ea4fc1bc7f57c78631846f03e474920fe648d8f742419f4cb150d2036cdaa1a9ce8d0308be05d463a73fd1e39d8d7924e6015d7367
-
SSDEEP
12288:Ig7K2UlLr6wvetUDTIdz0Azy1M9o+71ipwf92umFzUkuI:lZUlL2wveWvUYwb9o+ZiptucUw
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-