Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

76c77a70b8...5e.exe

windows7-x64

1

76c77a70b8...5e.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2023, 02:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    76c77a70b8ff02ec28049a28fdb538a5d663f548b48e9a449371edd4c414a15e.exe

  • Size

    2.9MB

  • MD5

    eafba56f876c04229c33c88a0bd964fa

  • SHA1

    d34f886a895f190c8a2d1bf4e46cbf104358126c

  • SHA256

    76c77a70b8ff02ec28049a28fdb538a5d663f548b48e9a449371edd4c414a15e

  • SHA512

    80e3dc784a25d86a3a63032ab6f66e39484e3c480b4cc94dba2d63f0f9897ac1fcd86482f5c8b078639aba617e35d20c0938c6f58869f4bc4402bc8229d46b21

  • SSDEEP

    49152:AAOdl4d7NHNUb75uEEbOyYWHxL9X5zT/dRSAUA/J:Zl8DFWH1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\76c77a70b8ff02ec28049a28fdb538a5d663f548b48e9a449371edd4c414a15e.exe
    "C:\Users\Admin\AppData\Local\Temp\76c77a70b8ff02ec28049a28fdb538a5d663f548b48e9a449371edd4c414a15e.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\UltraVNC.ini
    Filesize

    1KB

    MD5

    577ce0ab27002409212933ba6639530f

    SHA1

    316b8e6593833da0240bfd17f0e9109b6aed5ed2

    SHA256

    97e3e033477d2d063a9a4d4e823e30f25fbb4899a79db481bc02be653c57ab76

    SHA512

    b1a79c1f5540cdc2f257239ffc3d2f2ad15dfd1de89abdc056bb3d67209f119e820a9ec65cabbd701001d97c381b419ccbbcb121a801b6c861172055946cb185

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\UltraVNC.ini
    Filesize

    1KB

    MD5

    577ce0ab27002409212933ba6639530f

    SHA1

    316b8e6593833da0240bfd17f0e9109b6aed5ed2

    SHA256

    97e3e033477d2d063a9a4d4e823e30f25fbb4899a79db481bc02be653c57ab76

    SHA512

    b1a79c1f5540cdc2f257239ffc3d2f2ad15dfd1de89abdc056bb3d67209f119e820a9ec65cabbd701001d97c381b419ccbbcb121a801b6c861172055946cb185

    Download Submit