Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

21666191b9...de.exe

windows7-x64

3

21666191b9...de.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/12/2023, 00:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21666191b9487673714d692a37ad35de.exe

  • Size

    41KB

  • MD5

    21666191b9487673714d692a37ad35de

  • SHA1

    aa583c6809d83baaed15dd1a14a102abc8a486d9

  • SHA256

    77f352731f0f54e5829732596dd976afaa5a48d97339b4f548049fd101ab3ccd

  • SHA512

    b51e573d9783c4171e98f2d4d9bdca1f64a8d35ce5cd16736ac662e9dd55ad5f299f7e3b8127d0e4912c59998e7ee037a9773e5535201f464f61a71616e7fd79

  • SSDEEP

    768:Dh2toqSvpTXnztLNMNdyekLGHEfT+qXyf:Dh9DZtLeeyqXa

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\21666191b9487673714d692a37ad35de.exe
    "C:\Users\Admin\AppData\Local\Temp\21666191b9487673714d692a37ad35de.exe"
    1⤵
      PID:1840
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1840 -s 280
        2⤵
        • Program crash
        PID:3136
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 1840 -ip 1840
      1⤵
        PID:2024

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads