Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

1ee4cb8a34...8b.exe

windows7-x64

7

1ee4cb8a34...8b.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 22:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ee4cb8a3424240d8385ef632ec68e8b.exe

  • Size

    102KB

  • MD5

    1ee4cb8a3424240d8385ef632ec68e8b

  • SHA1

    27377d21b381884d5abe8c506d57cf0343e37d99

  • SHA256

    2be819deb25921282de3fb6b6bc134d784db220f1aef411070e6b6961c11127f

  • SHA512

    8105c3b51406b570ba08dea8f645235e6d160ccc1b7376d7419cbf4d70ca54617c8bd8ca9f25f75ce843dcc1cfb6ffef98b25d37b14f4a14d94e91640501c376

  • SSDEEP

    1536:3UUUUUUUUUUHdTD+vvvvvvvvvh+UUUUUUUC9mIkkkkkkTyhhhhhhhMa3KN2YufKt:blN9RkkkkkkTLJ0YufKhr

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 16 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Drops file in Windows directory 19 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1ee4cb8a3424240d8385ef632ec68e8b.exe
    "C:\Users\Admin\AppData\Local\Temp\1ee4cb8a3424240d8385ef632ec68e8b.exe"
    1⤵
    • Drops file in Windows directory
    PID:2812

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\win32dc\Counter-Strike + hack.exe
    Filesize

    102KB

    MD5

    86cccdd6bfd880330a27cdc7540f9c44

    SHA1

    ef53060e5414ac3ed263840b003f3c824033b06b

    SHA256

    32858fcd029b34524c6176d69c53520d45fe83b952e6ee7857f3affe20c6525e

    SHA512

    e2841128171de32e187fdb46dc03653902a9089d9c6d5751686b1fe1925a0e3b153aed175d23e560627139873fb03199deb31cef4e4389649f2744ef91371f64

    Download Submit

  • memory/2812-26-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-29-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-21-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-22-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-23-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-24-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-1-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-27-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-25-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-28-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-0-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-30-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-31-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-32-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download

  • memory/2812-33-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download