Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

f6f11acfc2...b4.exe

windows7-x64

7

f6f11acfc2...b4.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    176s
  • max time network
    191s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/12/2023, 20:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6f11acfc2a49149e104c06d30c98db4.exe

  • Size

    121KB

  • MD5

    f6f11acfc2a49149e104c06d30c98db4

  • SHA1

    0fa85d0c2dbd49b0794884ceead22d1f723cdf11

  • SHA256

    3e6cd4275d41a4fa7dddfa5197c93042e505ad913ebc2fe133e2d66b3e2d8762

  • SHA512

    807b403021d5569d14be7caea7fb2e884236c43484b2fb51d5ea50189adf73f1b3c94cf224d197e2870b6f6028cf270cc422b690ca5949f9e8ddbb31be16052c

  • SSDEEP

    3072:U6kWz0cRpkVFNkX/HedyUW9FPROGx2hTOtRP8qR:U6Xz0cjk2PJ5O5aRU

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f6f11acfc2a49149e104c06d30c98db4.exe
    "C:\Users\Admin\AppData\Local\Temp\f6f11acfc2a49149e104c06d30c98db4.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in System32 directory
    PID:1868

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\mpj75845.dll
    Filesize

    1024KB

    MD5

    b3d7d86d53757a3b6a822387469176a2

    SHA1

    e4909f49d078de462ce9dc048f7d9f4193ded3a7

    SHA256

    ab84f6ca8404e6505cb0011e7ee792502c9adc37e3064a2798b61d7cec904c08

    SHA512

    ebcc2bea80d1ae7b0f5b1e5825bc98473b510007a57ed3c020dddd93b811df499640100d3f2c5563043185bf4b35b2915362677d24c32b8189a9a0732c626036

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\mpj75845.dll
    Filesize

    641KB

    MD5

    4dffbbbd82448af8a3466cd57f1af4b2

    SHA1

    e72572535b2a2a2e3de11baaf92cccf49d8ff753

    SHA256

    b75f56d496aeb9596b16d9ab99e91bfc1b9eb6108142ff376d850b01cbd751a3

    SHA512

    314fb45a41228b3d909323392a39a38ebe779e9b3476f4959b5b45a006f522bc15d4a720c77f9b10d4ce460732ed6513bfb1193351aba13c6c71daa0cf09ae2b

    Download Submit

  • memory/1868-9-0x0000000010000000-0x0000000010024000-memory.dmp

    Filesize

    144KB

    Download