Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

System.exe

windows7-x64

7

System.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    01/08/2023, 05:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    System.exe

  • Size

    11.4MB

  • MD5

    db43080913c00700c9594c80b9b0136e

  • SHA1

    1995345c37e03c519f04f01f96af44627a6864f4

  • SHA256

    eed8daf124aa2e45b77d2e3ecf36030ab7fb68890d0130ade09cc6e4d83536b5

  • SHA512

    ba215a2323855105f5bd38105258786879e257ccde15c1501327539913521d820d298ed18b852888d1fcf7bb042a00a4d4b98d0f065a7efbd02d39e8e62eab58

  • SSDEEP

    196608:uCT+aj1dsbcUdUnYc0o5Gd7+6YMdBvIoP1HGzyAoxDyEFh/bhEqjFFReyQfDP2tp:uCT+aQbPmYRQK7+NqP1RmUh/7EfDPes

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\System.exe
    "C:\Users\Admin\AppData\Local\Temp\System.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Users\Admin\AppData\Local\Temp\System.exe
      "C:\Users\Admin\AppData\Local\Temp\System.exe"
      2⤵
      • Loads dropped DLL
      PID:2968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI22402\python39.dll
    Filesize

    4.2MB

    MD5

    2a9c5db70c6906571f2ca3a07521baa2

    SHA1

    765fa27bbee6a02b20b14b2b78c92a880e6627e5

    SHA256

    c69ce89b0487d86a63b64951207781f8051282afde67b20d3b8374c1a067f611

    SHA512

    fa4a677eaae2d258ac4f083a4e7009d985523b964ada93f53dc399a88c14970c7be2d2f39a7b38a922b58d134df2ede954554dcd00a4895e4273161867acac53

    Download Submit

  • \Users\Admin\AppData\Local\Temp\_MEI22402\python39.dll
    Filesize

    4.2MB

    MD5

    2a9c5db70c6906571f2ca3a07521baa2

    SHA1

    765fa27bbee6a02b20b14b2b78c92a880e6627e5

    SHA256

    c69ce89b0487d86a63b64951207781f8051282afde67b20d3b8374c1a067f611

    SHA512

    fa4a677eaae2d258ac4f083a4e7009d985523b964ada93f53dc399a88c14970c7be2d2f39a7b38a922b58d134df2ede954554dcd00a4895e4273161867acac53

    Download Submit