Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
30/12/2023, 12:22
Behavioral task
behavioral1
Sample
18607817d1c78d109c4b2103cff956c1.exe
Resource
win7-20231215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
18607817d1c78d109c4b2103cff956c1.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
18607817d1c78d109c4b2103cff956c1.exe
-
Size
6KB
-
MD5
18607817d1c78d109c4b2103cff956c1
-
SHA1
6bed09bc2cd9ba88980ebb4e6e71faefd2e1815e
-
SHA256
ed246f01fd733933d5f61cdee0154c5a255c41639310b721aeedf49487c64c53
-
SHA512
f93b998bad93fc369f910a31db5a9ea89bfcfd8e3694ccc5588f6b331cbdb7db041d683aad0075bbb883efacaffa61f869fd244bf066080d4f0f98523595aa49
-
SSDEEP
96:BUNB8HNUMqyaNTlFT8dGsY3QTWOVX1xQes5XjUMalxiO3btWYo0:BUNBoU2azFQGsYgWIKNjUL3btO0
Score
7/10
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/3052-0-0x0000000000400000-0x0000000000408000-memory.dmp upx -
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe 3052 18607817d1c78d109c4b2103cff956c1.exe