Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1fad0edb20...c2.exe

windows7-x64

1

1fad0edb20...c2.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/10/2023, 20:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1fad0edb20d66db798ce31f247d3fa363a43b116a1798b606e50134e1d3766c2.exe

  • Size

    8.6MB

  • MD5

    26cc68188755d8d600f18ee628dbad7d

  • SHA1

    315a231b07eebd51cb35ce8c9e4315aafae5792d

  • SHA256

    1fad0edb20d66db798ce31f247d3fa363a43b116a1798b606e50134e1d3766c2

  • SHA512

    47d9d61dfd191641c61c52141ffec1b594170f6a1cdd9c83d104f61d011de80ce307d5ffdf867fb0c7a6f14bbbad87f139649ad9703386d44e64a1334fbdbaad

  • SSDEEP

    196608:lbAvCOlrSFyiAa4/+uQB87ovR0kBUgvWa1TbyuFVy/+o6I1nnAma8:1AHCjeQAORB+yTLo6I1n28

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1fad0edb20d66db798ce31f247d3fa363a43b116a1798b606e50134e1d3766c2.exe
    "C:\Users\Admin\AppData\Local\Temp\1fad0edb20d66db798ce31f247d3fa363a43b116a1798b606e50134e1d3766c2.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\1fad0edb20d66db798ce31f247d3fa363a43b116a1798b606e50134e1d3766c2.exepack.tmp
    Filesize

    2KB

    MD5

    04ee6fc4f35c803657c0d777b8dbbb1b

    SHA1

    e63ed59cf0ffc150c14582ffb005a9956463233a

    SHA256

    896c0515bf4f2fa88b4e64f60f9fc3512e9c49bf161627547c5aad574b07ffb3

    SHA512

    87512b74a28a147bc9b1cfc6c6c6fa5c6496231fc4d36815d2de0e11ef42968d78c7a3a5fd44c41bcb217c9c9c082f4ee3e19e0bba91f52ffa516d9a8298ba2d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\917c1e116898cc08696cc52182d8261a.ini
    Filesize

    1KB

    MD5

    30d0b7aecdc7a47023811c7059ba762a

    SHA1

    7d844216b86e8da6e35904f5167fb89cf3521f63

    SHA256

    1c1c3b5b3cc2e076aeed436a63f7c3f15be2dd6b5f631444b93a3ba23c200154

    SHA512

    6fd1ae98efc6d2b6148c66db51f5ace1b10d778fe57b7ddb33edd1b543f8968b0f2d74126db6027bf341e0b3f83f9cdf4b2180cd9f025dcb9df99efd1900f715

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\917c1e116898cc08696cc52182d8261aA.ini
    Filesize

    1KB

    MD5

    f01eea571fa4d08b041cc673e0f7a214

    SHA1

    3b8972456965f9d04cf0cdf304811dfeb6bf556a

    SHA256

    9755ca1579d4da6e5ce379a7dec7496f141bb080666e8d1d9ed4400d5e0b4a2a

    SHA512

    357589b81a0790ff7fa103b73b6d54d02d5784c05db8655b51c123199c52d2aa932d7d2a76c8af0a3b3ec10a6a9d012cb50de5012fe47b67a8b8ac8b9146ad7d

    Download Submit

  • memory/2692-342-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-344-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-1-0x0000000001ED0000-0x0000000001ED3000-memory.dmp

    Filesize

    12KB

    Download

  • memory/2692-338-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-339-0x0000000001ED0000-0x0000000001ED3000-memory.dmp

    Filesize

    12KB

    Download

  • memory/2692-340-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-341-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-0-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-343-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-2-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-345-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-346-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-347-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-348-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-349-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-350-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-351-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-352-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download

  • memory/2692-353-0x0000000000400000-0x0000000001CF3000-memory.dmp

    Filesize

    24.9MB

    Download