Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

112b2846c2...ab.exe

windows7-x64

6

112b2846c2...ab.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    174s
  • max time network
    178s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/12/2023, 20:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    112b2846c299fedab175dc26d94916ab.exe

  • Size

    422KB

  • MD5

    112b2846c299fedab175dc26d94916ab

  • SHA1

    17f7dea0407e33e12b3adb75745cabe8b4dfc758

  • SHA256

    ae7229fd13398862e29c66249ef03a1bde7b2d9ecd6d8db8527c0024f15ccc49

  • SHA512

    c80ae9d0c01c1a1b0dcc71b7484b56a42b7258be1c1117f11566dd921ec5a8bda9711ee1976afe1683427b3c44ad08fcb1ff6deb0881cc696a27497f638606be

  • SSDEEP

    6144:Hq+TyiOqzPvuuYe0vucjToXVpGOZchl8HS0WESS:1XdPvuuY9ols8Aw

Score
6/10

Malware Config

Signatures

  • Drops desktop.ini file(s) 4 IoCs
  • Drops file in Program Files directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\112b2846c299fedab175dc26d94916ab.exe
    "C:\Users\Admin\AppData\Local\Temp\112b2846c299fedab175dc26d94916ab.exe"
    1⤵
    • Drops desktop.ini file(s)
    • Drops file in Program Files directory
    PID:4660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Program Files\7-Zip\7-zip.chm
    Filesize

    535KB

    MD5

    c48c64a54227760ce71eecf9b9f3e4ab

    SHA1

    ddc801b2221f1320662826b2d1bd3df7a93e0976

    SHA256

    deeba901705924fc02ce8909d5d7e75c9519582225625db13c9da811c1a734dd

    SHA512

    ae6b09ad05d97487f24c65bf7fba225c80a56927be3b7fa4a900f4ba4c6d9e4bdba43412ff72cacfa12ff32859d8c98e8da4801052def0e20662a15ecb955352

    Download Submit

  • memory/4660-499-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-627-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-335-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-369-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-496-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-0-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-530-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-1-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-635-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-803-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-898-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-900-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-904-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4660-1048-0x0000000000400000-0x000000000040A000-memory.dmp

    Filesize

    40KB

    Download