Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

aec88614e7...ea.exe

windows7-x64

5

aec88614e7...ea.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    186s
  • max time network
    186s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 11:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aec88614e7019ca5b4cd436f812857791bce47725e17570cf8b778cb8463ebea.exe

  • Size

    2.4MB

  • MD5

    4478510a7f7e75f1818e6be7cd08f8dc

  • SHA1

    c3f8d3579fd8738c53c907252072a0ea710e922e

  • SHA256

    aec88614e7019ca5b4cd436f812857791bce47725e17570cf8b778cb8463ebea

  • SHA512

    41aaf0e1181996ab151085b0a749e40e66a588cc464b88967c1f7fb7747d893c0726a6b17c3ea9ccdc29359236ba5e3eb57218cf6d617e435b664d90e9324b4b

  • SSDEEP

    49152:mLTsFrXMrS6DkqSdpkisUA1W0R6CDq2ic+umv4qP5Sk:mLTsFrXmS6DkqSfk7PLfyv4qP5Sk

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 34 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\aec88614e7019ca5b4cd436f812857791bce47725e17570cf8b778cb8463ebea.exe
    "C:\Users\Admin\AppData\Local\Temp\aec88614e7019ca5b4cd436f812857791bce47725e17570cf8b778cb8463ebea.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:4188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4188-0-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-1-0x0000000074F60000-0x0000000075175000-memory.dmp

    Filesize

    2.1MB

    Download

  • memory/4188-3875-0x0000000075330000-0x00000000754D0000-memory.dmp

    Filesize

    1.6MB

    Download

  • memory/4188-5884-0x0000000074D90000-0x0000000074E0A000-memory.dmp

    Filesize

    488KB

    Download

  • memory/4188-13069-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13070-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13071-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13072-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13074-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13075-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13077-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13078-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13079-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13080-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download

  • memory/4188-13082-0x0000000000400000-0x00000000007BA000-memory.dmp

    Filesize

    3.7MB

    Download