Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
25/12/2023, 22:12
Behavioral task
behavioral1
Sample
3f3a94851adaacd130a69050ddf27549.exe
Resource
win7-20231129-en
3 signatures
150 seconds
Behavioral task
behavioral2
Sample
3f3a94851adaacd130a69050ddf27549.exe
Resource
win10v2004-20231215-en
0 signatures
150 seconds
General
-
Target
3f3a94851adaacd130a69050ddf27549.exe
-
Size
20KB
-
MD5
3f3a94851adaacd130a69050ddf27549
-
SHA1
405cef75b01a8beda02e39b09bfb300a047fd15c
-
SHA256
7df0e37394e45982d9dd23b1181b2a4238acd1e94a0853e324e810796214e7cc
-
SHA512
27ff3db3885174bfa28fd03da3ab8e341941f45ab0da62d36b22caf78fcc7e65cbc0fa4e7624b1129ae120f6492d437a539f5ef126404fbe4d11643e1587ed88
-
SSDEEP
96:fO8vtmMC2rJKKTVYZV0gammegNUNHR7I+Yy:2Og2rJjTVa03ugNkKty
Score
7/10
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/2420-0-0x0000000000400000-0x0000000000407000-memory.dmp upx behavioral1/memory/2420-3-0x0000000000400000-0x0000000000407000-memory.dmp upx -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 2420 3f3a94851adaacd130a69050ddf27549.exe