Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
139s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20231023-en -
resource tags
-
submitted
02/11/2023, 16:45
General
-
Target
NEAS.8146e9bd49f80d0a06f07c427ab203e0.exe
-
Size
272KB
-
MD5
8146e9bd49f80d0a06f07c427ab203e0
-
SHA1
bba84d8fc0b25faa2841669283595c981313e4aa
-
SHA256
820783fdc46f0e509238ece6a5407423c90cfe3a173aac0f0df90ee45b880144
-
SHA512
e4936bf54fe928c41f28ee805b20707d710af42c1260ea60ae5ac17004a5e7c73df264479a925ff15d2236b1dece36ded4ef7659b481480344a0291ff07980b7
-
SSDEEP
3072:Jf4JdTigJkCnDF/HPelziJPLCqwzBu1DjHLMVDqqkSp:ZKT/J7Dtv8ziJjwtu1DjrFqh
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\NEAS.8146e9bd49f80d0a06f07c427ab203e0.exe"C:\Users\Admin\AppData\Local\Temp\NEAS.8146e9bd49f80d0a06f07c427ab203e0.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3468 -s 2242⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3468 -s 2282⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3468 -ip 34681⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 508 -p 3468 -ip 34681⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
272KB