Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1182ec6bb0...0e.exe

windows7-x64

3

1182ec6bb0...0e.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 06:53 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1182ec6bb07e55830969b66a42f86a0e.exe

  • Size

    21KB

  • MD5

    1182ec6bb07e55830969b66a42f86a0e

  • SHA1

    2540fc23943f0f6055a080716a7533fa6a933edf

  • SHA256

    d483008e109b3d1fe95a1e1a721bd87062ecc7bfbf79fe1f7ea1d57ca16187b6

  • SHA512

    fd481ce6429ecd4c9f135f830f4ef2ec42d621a9c90cf716d12e52a6820069c5635489ae293667d18bb7c3c74168448e3ea2a8991121f0c95bde79f7abcdbb97

  • SSDEEP

    384:AVCQq5BxS0b+5ydJj7w2zAfPgjl+zd/ERSWU1cAkb8d+cee/zmplJ:AAQNafKgAAkzJnWUoC/zGJ

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of UnmapMainImage 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1182ec6bb07e55830969b66a42f86a0e.exe
    "C:\Users\Admin\AppData\Local\Temp\1182ec6bb07e55830969b66a42f86a0e.exe"
    1⤵
    • Suspicious use of UnmapMainImage
    • Suspicious use of WriteProcessMemory
    PID:2936
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 2936 -s 36
      2⤵
      • Program crash
      PID:1700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.