Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

c3c89877a3...d9.exe

windows7-x64

5

c3c89877a3...d9.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    26/11/2023, 14:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c3c89877a369ad1d94342b4e05f0abc03c4cb5560ec6d834c34fc4ca231bf1d9.exe

  • Size

    1.9MB

  • MD5

    1ed1cc584962a2a0234885ca7cbbf87f

  • SHA1

    14e225ae0699a5758dd5aaaa5d1c5037c6c6c944

  • SHA256

    c3c89877a369ad1d94342b4e05f0abc03c4cb5560ec6d834c34fc4ca231bf1d9

  • SHA512

    c11674ff35b49fae7ea9c30a1e6bcc98a8f4b5c8f264f9d55669f22a4083ade5fdb0a091a43ce2d04537ed383d23f0324b565fac1182b66478ec8d1c8f584d17

  • SSDEEP

    49152:47QMGIEr2hyyU/sQaIbd/HA/XXO5YbQBIEbrGygStXBqxoXbrSIQ5kBGpo2A:45GIE6XU/sQDd4/e5YkBIEbrGygSZr9C

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c3c89877a369ad1d94342b4e05f0abc03c4cb5560ec6d834c34fc4ca231bf1d9.exe
    "C:\Users\Admin\AppData\Local\Temp\c3c89877a369ad1d94342b4e05f0abc03c4cb5560ec6d834c34fc4ca231bf1d9.exe"
    1⤵
    • Drops file in System32 directory
    • Suspicious use of SetWindowsHookEx
    PID:2696

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2696-1-0x0000000000300000-0x0000000000335000-memory.dmp

    Filesize

    212KB

    Download