Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
25/12/2023, 17:05
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2f7e3cc5c5a000ada4c41a6262122e31.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2f7e3cc5c5a000ada4c41a6262122e31.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
3 signatures
150 seconds
General
-
Target
2f7e3cc5c5a000ada4c41a6262122e31.exe
-
Size
291KB
-
MD5
2f7e3cc5c5a000ada4c41a6262122e31
-
SHA1
cde24487dedca5a577c4825ab52e802cff150a4b
-
SHA256
0738663687f5496969d4ce2232697535a3cbb81f4dd12b5ec619b71af60d9bbf
-
SHA512
3654f4e44b1053be418376ff578a56be83f9d1b446dcdc3e4736ea7f77a2310e7fb98f470422552966832f02db2114caf939f3739658696b36ae57b1fa5bca5c
-
SSDEEP
6144:Hq+TyiziFmJmxhqYxhk6spHZO8qnuw4k3cw:1Xz8mJmxhqYxhQw8qu/c
Score
6/10
Malware Config
Signatures
-
Drops desktop.ini file(s) 6 IoCs
description ioc Process File opened for modification \??\c:\Program Files\desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\$Recycle.Bin\S-1-5-21-3818056530-936619650-3554021955-1000\desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\$Recycle.Bin\S-1-5-21-3818056530-936619650-3554021955-1000\desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\Stationery\Desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\desktop.ini 2f7e3cc5c5a000ada4c41a6262122e31.exe -
Drops file in Program Files directory 64 IoCs
description ioc Process File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\ja-JP\TipRes.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Google\Chrome\Application\106.0.5249.119\d3dcompiler_47.dll 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\bin\jstat.exe 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\da-DK\tipresx.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\Sports\SportsNotesBackground_PAL.wmv 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\MSInfo\fr-FR\msinfo32.exe.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\SpeechEngines\Microsoft\TTS20\MSTTSLoc.dll 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\BabyBoy\BabyBoyScenesBackground_PAL.wmv 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\db\lib\derbyLocale_es.jar 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Marquesas 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\SystemV\YST9YDT 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\ink\ipsjpn.xml 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\System\msadc\it-IT\msdaprsr.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\System\msadc\it-IT\msdaremr.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\LayeredTitles\layers.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\NavigationUp_SelectionSubpicture.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\System\ado\en-US\msader15.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationLeft_ButtonGraphic.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_SelectionSubpicture.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\nl.pak 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\Stationery\Bears.jpg 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\en-US\OmdProject.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\hu.pak 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\management\jmxremote.password.template 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\Casablanca 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\GMT 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\System\ado\msadox.dll 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\HueCycle\colorcycle.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\OldAge\NavigationLeft_ButtonGraphic.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\ink\hwrfrash.dat 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\System\en-US\wab32res.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\fr-FR\OmdProject.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\SpecialOccasion\NavigationLeft_SelectionSubpicture.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Belem 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Tegucigalpa 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\fsdefinitions\main\zh-changjei.xml 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\en-US\boxed-join.avi 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Common Files\Microsoft Shared\VSTO\vstoee90.tlb 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Google\Chrome\Application\106.0.5249.119\Locales\et.pak 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Google\Chrome\Application\106.0.5249.119\vk_swiftshader_icd.json 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Internet Explorer\ie9props.propdesc 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Internet Explorer\Timeline.cpu.xml 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\include\win32\bridge\AccessBridgeCalls.h 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\de-DE\TipRes.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Africa\El_Aaiun 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\security\cacerts 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\pagecurl.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\Shatter\NavigationUp_SelectionSubpicture.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\Vignette\1047x576black.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Internet Explorer\en-US\jsprofilerui.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Hermosillo 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\System\msadc\de-DE\msaddsr.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\Stationery\Soft Blue.htm 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\System\msadc\fr-FR\msdaremr.dll.mui 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\DVD Maker\Shared\DvdStyles\FlipPage\NavigationUp_SelectionSubpicture.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\DVD Maker\Shared\DvdStyles\Push\push_title.png 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Internet Explorer\iediagcmd.exe 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\bin\sunec.dll 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Miquelon 2f7e3cc5c5a000ada4c41a6262122e31.exe File created \??\c:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Europe\Berlin 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\Pacific\Chuuk 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\WET 2f7e3cc5c5a000ada4c41a6262122e31.exe File opened for modification \??\c:\Program Files\Java\jdk1.7.0_80\jre\lib\zi\America\Moncton 2f7e3cc5c5a000ada4c41a6262122e31.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1.3MB
MD56e8994ea27c37b15ebbbb36bc395d685
SHA15cf19025d7313d7106ff5d36ac0d070545abdcd3
SHA256761b555cac574f8014cff87fe2c51e1848b1ca31633881f80c4736661461511e
SHA51242d431705ed69861f4e4ab2b1b4a0eeb6a2c79228ae9b594254192b050ab42da7415be622a2863fcaaec39bd45350b9d8c602415cf56fbcf7f5e0a41d3ed2608
-
Filesize
5B
MD5b5b682b742431a52ea8b17c72ad9c572
SHA1326320f469235708c59f678c9a7357dca552d306
SHA25630d9045a9f172208b13161d1f5204e5787e5e07bfbb4f490d0041b03b7f44f76
SHA5124e1bd7cc616b3115baf6be7ebd29fe2d1123bc0f25464865a0cf9207b0344fba70747a5ce6f00e8d9c696881f6db1e12f81736bc748b6f2b60bf84c681a49163