Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
138s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
30/12/2023, 04:50
General
-
Target
0f1492e3af8180c0621e188cc8062065.exe
-
Size
24KB
-
MD5
0f1492e3af8180c0621e188cc8062065
-
SHA1
731f3ab4f4aeaa1d371e9fe52de9ee2beb812001
-
SHA256
f4eec76e0c63815a9aaee30a194bdb3ce721fdd3bee6f751cb0d0e55ef2d6e53
-
SHA512
511b0d32f92cb987d0b0e2db41cb44517eb56a678bdf1784706bc294e58cc05020d703ffb0a91f108c17e3e3420f860ae5b9ee137e13f9ef83b8350225d0625a
-
SSDEEP
384:6tZle8XyxJ1psW/nDr66QC2YbSeWF6GszjvjxPM4aPvbaHV6Za:6tv83cCkvUfblM4I8Vq
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\0f1492e3af8180c0621e188cc8062065.exe"C:\Users\Admin\AppData\Local\Temp\0f1492e3af8180c0621e188cc8062065.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3300 -s 3002⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3300 -s 3082⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3300 -ip 33001⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 516 -p 3300 -ip 33001⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
76KB
-
Filesize
76KB