Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

055fe80d98...47.exe

windows7-x64

7

055fe80d98...47.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 16:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    055fe80d982944c1ddaf462397ff3a47.exe

  • Size

    300KB

  • MD5

    055fe80d982944c1ddaf462397ff3a47

  • SHA1

    297b22678c67a1b8a49130160aa775fe7b87cc78

  • SHA256

    8e95b867aa7a20f0e390732231821938eafb7d4ef50f383d514c9637a647cea3

  • SHA512

    3ec534be52090c1253b3a7520183f0fd3bda4d3c1f26141d8553576b3f4ba596fce824b879b9bd40d2d1b94d1079184fd35ce09af343474b6343db2d17c62905

  • SSDEEP

    6144:OrnmlRH9Oy6tq6JczwsIiPG2ZM8p3ABMLbl9MFJXgyPzl3zCCoK7r:OrnaRH9Oy6tNJ4wsf1pwylsJXrM9i

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\055fe80d982944c1ddaf462397ff3a47.exe
    "C:\Users\Admin\AppData\Local\Temp\055fe80d982944c1ddaf462397ff3a47.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\TsuD7A06381.dll
    Filesize

    267KB

    MD5

    d1ddd2bed23dd1e6a70855f5f7ba3e7b

    SHA1

    7c75eacc13fc2f225dfa9820ea306f6bbc891516

    SHA256

    e6f6af10a5d9496fda5f06b1dbc23f64ccda396b2fc219fd2464851edc003ba5

    SHA512

    d9647b1beffe978ef999e59417fbd6e9ce7fa7efbce690ce2039dd14bffbbdf8e18f56a529f1ce362a47b0b49121085afc6981e15b9177a3672e40de099369e1

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{50B65391-C173-465F-A4B4-89518B557167}\_Setup.dll
    Filesize

    217KB

    MD5

    ca438abb539572b5dbb95e34866c6987

    SHA1

    65c6294be3a09b4897033fb01463ee641127664b

    SHA256

    67ab505c4e4197c6b04b524bf1ff3b6946ab757febf3391e9ee87a8d879bdf7f

    SHA512

    c0d833819c8f3f74359bbe3310052178a66704269150df9ba01c25598c97c57eaf87da6e756af986593417a311b4bd0fcdd53d74022b703e1080b07220b2d24f

    Download Submit

  • \Users\Admin\AppData\Local\Temp\{50B65391-C173-465F-A4B4-89518B557167}\_Setupx.dll
    Filesize

    43KB

    MD5

    c215b7a537c3d78b84542841ab0d2b12

    SHA1

    d88c3a4cadfa20a28eb6c0b198a33b243899073d

    SHA256

    c5885cc2f106faa6015dfc9730714b19bd2116c613bd10614ba358429c061044

    SHA512

    49415a7e0a2cad632f3c3045228c60cc49c763f31bfedcb53834859ad63f4042dcf87095198de245ceede153598a7c0f411890fb1cc55ac347e2f655895e9c20

    Download Submit