Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

1e4e56d871...93.exe

windows7-x64

7

1e4e56d871...93.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    20s
  • max time network
    114s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 22:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e4e56d8718ded1668f40c6f156f9893.exe

  • Size

    1.2MB

  • MD5

    1e4e56d8718ded1668f40c6f156f9893

  • SHA1

    746ac3d4a1e28c90090200ec19fc3fc6c9ff4d00

  • SHA256

    5699604d46e7ee553090135f7afd09c03f5f4f4bfb45e3add02b503ff648824d

  • SHA512

    c5c790ac07fb39e6da0d1624b0b93646ee0b11e0ae5697e1729ed72ef6bbcf7d6afe87bcccb1f891434c04b7360b0844a86023105c8a93801add9f40eb8ee1de

  • SSDEEP

    6144:Ae34MvEq1zQbe9DP3lpr4jAxLY6M6EVagK4:JVzQcbRx9CVPN

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 7 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\1e4e56d8718ded1668f40c6f156f9893.exe
    "C:\Users\Admin\AppData\Local\Temp\1e4e56d8718ded1668f40c6f156f9893.exe"
    1⤵
    • Loads dropped DLL
    PID:220

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsx4CAA.tmp\LangDLL.dll
    Filesize

    5KB

    MD5

    9384f4007c492d4fa040924f31c00166

    SHA1

    aba37faef30d7c445584c688a0b5638f5db31c7b

    SHA256

    60a964095af1be79f6a99b22212fefe2d16f5a0afd7e707d14394e4143e3f4f5

    SHA512

    68f158887e24302673227adffc688fd3edabf097d7f5410f983e06c6b9c7344ca1d8a45c7fa05553adcc5987993df3a298763477168d4842e554c4eb93b9aaaf

    Download Submit

  • memory/220-24-0x0000000003260000-0x0000000003272000-memory.dmp

    Filesize

    72KB

    Download

  • memory/220-23-0x0000000003260000-0x0000000003272000-memory.dmp

    Filesize

    72KB

    Download

  • memory/220-48-0x0000000003260000-0x0000000003272000-memory.dmp

    Filesize

    72KB

    Download

  • memory/220-47-0x0000000003260000-0x0000000003272000-memory.dmp

    Filesize

    72KB

    Download