Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.608bf...60.exe

windows7-x64

3

NEAS.608bf...60.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    130s
  • max time network
    162s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/11/2023, 15:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.608bfb3555a6ab3e9cbfc64f2a0ff760.exe

  • Size

    228KB

  • MD5

    608bfb3555a6ab3e9cbfc64f2a0ff760

  • SHA1

    35edbc9c18fc80be9d2fd6dd57b493aed390413f

  • SHA256

    cafddef2c90d8a4979c15f063a0c2852801ed1c5ce058872440c592e1273797f

  • SHA512

    d3098788341f793b2064fefa0833db14b7062b847853aaf8f8ab02b88bfcd4317d5aa62646ce5b4b0686d15627dcf677f88911891e20bf0267f71170544a8571

  • SSDEEP

    768:f1DC1LCP89xeW22keTuGJewSnERidcOsvrzCS8AvbuO90hiUi9I/1H5tTXdnhguR:9lk9xeAuY/Ieidif+3uzEbRfpol

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.608bfb3555a6ab3e9cbfc64f2a0ff760.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.608bfb3555a6ab3e9cbfc64f2a0ff760.exe"
    1⤵
      PID:4128
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4128 -s 224
        2⤵
        • Program crash
        PID:3612
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4128 -ip 4128
      1⤵
        PID:5064

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/4128-0-0x0000000000400000-0x0000000000439000-memory.dmp

        Filesize

        228KB

        Download