Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

0b721647e4...fc.exe

windows7-x64

7

0b721647e4...fc.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    0s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 06:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b721647e4bd5c9bce28de0f76ac3dfc.exe

  • Size

    3.6MB

  • MD5

    0b721647e4bd5c9bce28de0f76ac3dfc

  • SHA1

    ec3c3c1a23d84d5cb993c44fe2b33076539d169a

  • SHA256

    10fc116869c2574bab76a189ce79e6c0fda91e2a20f70f2ab1050221ddebaab6

  • SHA512

    62ec06ec86fe77926933f47ef39ae8396e6599121376854489ebd70d9a8421dbb1691968d47a3e5351569239dc9d43ce0557e8a6b3399308aa59bec3f26f377e

  • SSDEEP

    49152:wIuU4fxBGUxnT388Oug9BovxHH0hhJvTxaxEhldfAyT/fve4DT:ru17GUpzpGnhX9axEhZTnW43

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 2 IoCs

    Detects file using ACProtect software.

  • UPX packed file 4 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\0b721647e4bd5c9bce28de0f76ac3dfc.exe
    "C:\Users\Admin\AppData\Local\Temp\0b721647e4bd5c9bce28de0f76ac3dfc.exe"
    1⤵
      PID:4004

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\{F4FBEBFB-2692-4161-8CA9-E552F519A1F5}.dll
      Filesize

      57KB

      MD5

      291e1d5ef15b7fe6a3f32faa737eab18

      SHA1

      559520f638030d5cbd6d37c58511b40fd8d740a5

      SHA256

      76c0006788c407da22f165d186451ba1c469847b455c583b7438a0418ce3a070

      SHA512

      00ae28b2d2ea8cb84a05478589edec9d79d0873a99f8dd5b8563110fa4ec029cbb02c1cbfcb69d42d29ddef22307f6445aa2371603e0d3417cf042e47c35795a

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\{F4FBEBFB-2692-4161-8CA9-E552F519A1F5}.dll
      Filesize

      21KB

      MD5

      b4b7b3a512f020bb34a3e5646f446b81

      SHA1

      81912520c552b320e8dcaebaebe6db2e1de8cf8c

      SHA256

      e0efc73fed80a912bdf15026174a3a0b5c1abb765fdc1925b7fc48ec7a5dfc90

      SHA512

      9e8084a00f1bcc36dc0df313b5ccb907c8e73ded72555a712021739686a978685f70342a362c49ae3102093e97d2cdb8cef93fe178833a7986a928c20ec25845

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\~zm_{D6B294D0-514B-451E-8724-422BA1D7C201}\css\style.css
      Filesize

      1KB

      MD5

      5b988eba5206504a7a9ef9567a71d576

      SHA1

      016139e5b3e8dbe79c0d8df6c94329f1f51dd8b8

      SHA256

      7eb7963147385f4dc813c02fc0109e9fc5525b4021eb6cf2f1402bdf4c0f4b31

      SHA512

      8154a5101f4360686c405a636037c724b55affcc31e3ff6f3a78c24e77c2816732ef1732c565cf34a41fa78523a4c3738d06c11e3454b21986126630f5c9dd47

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\~zm_{D6B294D0-514B-451E-8724-422BA1D7C201}\index.html
      Filesize

      1KB

      MD5

      7c3415d6d36d83ced6a5ba18dd56cc5a

      SHA1

      17ab60211c4061344352f7f22bba25ee2510857a

      SHA256

      f2ce781ed40fad2d0c572e5649dc3c8278309f813f44d0702329bbf27dd6f41d

      SHA512

      974357b456d6915b1e396141542c5f7df577081f76ed3230790feacccb858f8569a12f59f1d9f089b0996e5bf457cdc8140826208449cd82d428c07f5db65b7c

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\~zm_{D6B294D0-514B-451E-8724-422BA1D7C201}\js\common.js
      Filesize

      102B

      MD5

      fd7b0ad90e04f867f0caf572d03b6d1c

      SHA1

      f54f16fcb066d29d280276dd280b7ee7c83a1573

      SHA256

      c9c9589c41594137ef6f54b394d3495910601e8f0d77f4ba0866b513e84a24e6

      SHA512

      0215bd6562e26025c3dd0e6d9696a930368a146bd6d9eab8b0b30149ceeb03a8d0f7b8511203f27e3adcfc5affb9ef7ca040659eb670fead4289c233910f553c

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\~zm_{D6B294D0-514B-451E-8724-422BA1D7C201}\js\lang.js
      Filesize

      632B

      MD5

      f3ca8504fe38798d402ada65acc0923e

      SHA1

      8f9930721e2a559be8e4379cb6e9dc9ffd71ef52

      SHA256

      f4b4d8d4bb78d970a3fcf6dc8ee0353776801ef373b54d839cd8853c1481a378

      SHA512

      ab1324ec6f5dcd034efadb6eef3224244de5eb328a4c28e4646a7a182d6af2ec60dad50f52b1e8aedbe18e3eb6a03a4705949763746952492e9abb0f9e01bec7

      Download Submit

    • memory/4004-18-0x00000000051B0000-0x000000000520B000-memory.dmp

      Filesize

      364KB

      Download

    • memory/4004-0-0x0000000000400000-0x000000000072B000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/4004-19-0x00000000051B0000-0x000000000520B000-memory.dmp

      Filesize

      364KB

      Download

    • memory/4004-3-0x0000000000D60000-0x0000000000D61000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4004-2-0x0000000000400000-0x000000000072B000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/4004-1-0x0000000000880000-0x0000000000881000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4004-108-0x0000000000400000-0x000000000072B000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/4004-110-0x0000000000D60000-0x0000000000D61000-memory.dmp

      Filesize

      4KB

      Download

    • memory/4004-111-0x00000000051B0000-0x000000000520B000-memory.dmp

      Filesize

      364KB

      Download