Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

42755.exe

windows7-x64

3

42755.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2023, 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42755.exe

  • Size

    539B

  • MD5

    33f4b08d12e4efc081687adb5e2dbaa2

  • SHA1

    b403850eadc845ae977933b8eb3b2d167533996a

  • SHA256

    7a2937e8f401fe27177e893e10625a8d31f4d5441a2360d1f04d76b1a39525c7

  • SHA512

    41a1d007cb654eb66cc6a2801446c61ca749101c40cea2c723d7843c5aae0474d84e36ddadbbf203881dd0261720ccf644f5ab6085a40fb2536d302880119b6a

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies system certificate store 2 TTPs 2 IoCs
    evasionspywaretrojan
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\42755.exe
    "C:\Users\Admin\AppData\Local\Temp\42755.exe"
    1⤵
    • Modifies system certificate store
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Windows\SysWOW64\cmd.exe
      "C:\Windows\System32\cmd.exe" /C "C:\Users\Admin\AppData\Local\Temp\Test.bat"
      2⤵
        PID:2664

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\Test.bat
      Filesize

      217KB

      MD5

      02e10362636ca84c80c9df3d4a0a5e41

      SHA1

      266afcb7237fc05c34dc3644c72658e3c894882c

      SHA256

      b5beb1db1dec9c9eadcca4a6e9885f7f80589b01c66d3ae24ee4970071d7580e

      SHA512

      942489a775e606409d945cf1d356df6cab5efc9d99996faf9e0e684f34fdf3aa6a6ac498bb3a9b7f7a9115029b807c7a20a1dd10e7ef07a1cd91b830462b2cb8

      Download Submit