Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

03542dfa5b...19.exe

windows7-x64

1

03542dfa5b...19.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 20:36 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03542dfa5b29cec35db463bf5ec49219.exe

  • Size

    92KB

  • MD5

    03542dfa5b29cec35db463bf5ec49219

  • SHA1

    77dcd65b0a779483f091eab5cecedaf17f885418

  • SHA256

    f0a7e0218ef749316ab0d3b21730e3efd279cde904128a617b9ffce7a9790f7b

  • SHA512

    323bc0aaece16b1e5b8850867ed677ef7663a49d49106a068f98b95b7bd33a7e766e5228536fe5435158bca444d3b09ed6b5232ed0d1994262ee8ffc2f2048d1

  • SSDEEP

    1536:8gAO9q5JPKY54IOum8NnmdzifwGwosVzTVUpPT+GWJQCq1K6TPG2yn:8gAO9q59+VyNnmdzg/HsFBUpPT+XQCqI

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\03542dfa5b29cec35db463bf5ec49219.exe
    "C:\Users\Admin\AppData\Local\Temp\03542dfa5b29cec35db463bf5ec49219.exe"
    1⤵
      PID:1736

    Network

    • flag-us
      DNS
      www.ilchirone.it
      03542dfa5b29cec35db463bf5ec49219.exe
      Remote address:
      8.8.8.8:53
      Request
      www.ilchirone.it
      IN A
      Response
      www.ilchirone.it
      IN A
      62.149.128.45
    • flag-it
      GET
      http://www.ilchirone.it/public//modules/coppermine/themes/maze/setup.exe
      03542dfa5b29cec35db463bf5ec49219.exe
      Remote address:
      62.149.128.45:80
      Request
      GET /public//modules/coppermine/themes/maze/setup.exe HTTP/1.1
      Accept: */*
      Accept-Encoding: gzip, deflate
      User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3)
      Host: www.ilchirone.it
      Connection: Keep-Alive
      Response
      HTTP/1.1 404 Not Found
      Cache-Control: private
      Content-Type: text/html; charset=utf-8
      Server: Microsoft-IIS/8.5
      X-Powered-By: ASP.NET
      Date: Sat, 30 Dec 2023 01:55:28 GMT
      Content-Length: 5035
    • 62.149.128.45:80
      http://www.ilchirone.it/public//modules/coppermine/themes/maze/setup.exe
      http
      03542dfa5b29cec35db463bf5ec49219.exe
      731 B
       6.8kB
       8
      6

      HTTP Request

      GET http://www.ilchirone.it/public//modules/coppermine/themes/maze/setup.exe

      HTTP Response

      404
    • 8.8.8.8:53
      www.ilchirone.it
      dns
      03542dfa5b29cec35db463bf5ec49219.exe
      62 B
       78 B
       1
      1

      DNS Request

      www.ilchirone.it

      DNS Response

      62.149.128.45

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1736-0-0x0000000000400000-0x0000000000422000-memory.dmp

      Filesize

      136KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.