Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2023-08-26...JC.exe

windows7-x64

3

2023-08-26...JC.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 05:31 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2023-08-26_c3c45fd506aaf75a64aab5c7d504ca10_icedid_JC.exe

  • Size

    2.4MB

  • MD5

    c3c45fd506aaf75a64aab5c7d504ca10

  • SHA1

    425d377bec3f6d66e6fff16f2612d146be6dd7ee

  • SHA256

    ea9806cf4e43b5d2cb0730bb16723bbcc683e0d5c1905822f510e59b7a242baa

  • SHA512

    e298df5031f22ad4651fcac31755b787eec479c2ee80702533ba05489cd24a87858bddb9b4712b95e85fbe8ab3a4e37df651971f4261b8d61661f6364914a636

  • SSDEEP

    49152:V5rHQ6aFH4ZxAFcXGS7yApA8kkzV+jwkcq:Xrw6a94bESWApA1kRFkcq

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2023-08-26_c3c45fd506aaf75a64aab5c7d504ca10_icedid_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\2023-08-26_c3c45fd506aaf75a64aab5c7d504ca10_icedid_JC.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3016
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 3016 -s 248
      2⤵
      • Program crash
      PID:1096

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.