Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
156s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
29/12/2023, 21:48
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
04d3fed52cc199376f5e464d29dc56e6.exe
Resource
win7-20231129-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
04d3fed52cc199376f5e464d29dc56e6.exe
Resource
win10v2004-20231215-en
1 signatures
150 seconds
General
-
Target
04d3fed52cc199376f5e464d29dc56e6.exe
-
Size
93KB
-
MD5
04d3fed52cc199376f5e464d29dc56e6
-
SHA1
392c4243d1dd79355fea8e382647ea683c0e541c
-
SHA256
41f4ff2abb633a51dad2f534a4d6b325e63a877d043ad9fc31b49fa62a8346d4
-
SHA512
4aa0161ca2dc6cd23f2d72604bd4a0b68545b7a687cdf31f979dbf3a67926a8b95bf28a2c504bf9a6d2bd518b29d890340a4249dc5a27e34aa3313a0e61bc805
-
SSDEEP
1536:rmPIcSnHJeSlEaivYtWklNs6hDSDyyKw2ZbjFDuPBNg+uYvb0xlCsofGHb8dctVJ:rmAcSJ1lOY8uNsI7NXlYDmMso2ZtVyCD
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 2868 2112 WerFault.exe 73
Processes
-
C:\Users\Admin\AppData\Local\Temp\04d3fed52cc199376f5e464d29dc56e6.exe"C:\Users\Admin\AppData\Local\Temp\04d3fed52cc199376f5e464d29dc56e6.exe"1⤵PID:2112
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2112 -s 2522⤵
- Program crash
PID:2868
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2112 -ip 21121⤵PID:4676