Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

setup1.exe

windows7-x64

6

setup1.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    88s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 12:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    setup1.exe

  • Size

    413KB

  • MD5

    4a264ed393d09323cda4bb9bea2f5e88

  • SHA1

    70d8694625c9031a9d31a14f30b4f071d9d82b57

  • SHA256

    cb48b4e8b1937b3b65c6721097c59a118dd0f310791309c71e6451e88beee884

  • SHA512

    859393af3ebac7ef494f56a85a2913b5d68981a55dc92a468d2785242b8c70d2a1a393b68e0b7628646b562f7942c6d23ad0abb2c96ab4ebda13ccdb9a541015

  • SSDEEP

    6144:2zG8nriOnW/rGgGSQG0w8o9Ve1/oNjd+/ORTTNPDdXpmwPrOHHl4zMoxK01ryqRD:O1DYrzQCe2d+uTTNZX4wPynl4oq1xj/

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Program Files directory 3 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\setup1.exe
    "C:\Users\Admin\AppData\Local\Temp\setup1.exe"
    1⤵
    • Drops file in Program Files directory
    PID:2332

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2332-16-0x0000000000400000-0x0000000000422000-memory.dmp

    Filesize

    136KB

    Download