Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
95s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20231222-en -
resource tags
-
submitted
26/12/2023, 08:49
General
-
Target
61269cf0eab6b32c6840bb75bb19e5ff.exe
-
Size
205KB
-
MD5
61269cf0eab6b32c6840bb75bb19e5ff
-
SHA1
a4535ef9093192b0e91f0b836720c1a42c856b2f
-
SHA256
e4a4969e079fba422c02ef07412613227583b7f0492b83985cd8f7d8a7e026a2
-
SHA512
1b9f0746df97d65595d4f7a8ae2a8baeaa423221e823c2739d85835a57fa51fa081539b5b98e4e4d2f14a5c23a9e14fadf9fb875855313352554d056a79a9aaf
-
SSDEEP
3072:Zw4ltiaNhyKPE++DIGgm33ss+KKLLpI2mNrGlf3XaKnjz4G9:jt0+pGPt+bJI/NrOf3DY
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\61269cf0eab6b32c6840bb75bb19e5ff.exe"C:\Users\Admin\AppData\Local\Temp\61269cf0eab6b32c6840bb75bb19e5ff.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4212 -s 2202⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4212 -s 2242⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4212 -ip 42121⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 4212 -ip 42121⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
452KB