Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

43fb39b3d9...57.exe

windows7-x64

1

43fb39b3d9...57.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    153s
  • max time network
    171s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/01/2024, 15:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    43fb39b3d92c58f5978fdba03fc26757.exe

  • Size

    635KB

  • MD5

    43fb39b3d92c58f5978fdba03fc26757

  • SHA1

    6495647ed89278c3eafff84a1d44d9e5eb65e2d6

  • SHA256

    89a604e2208df0d901be2686a53939570dad0f94e885a417cf2caa82db573c87

  • SHA512

    41708e509c1691f9242b65c6758dbf29569795a40f91da87a139ffc08dbf77101121a1f86137bccbbf22b869083c2113f4ec89ef320a52acfb39fbae3e97e275

  • SSDEEP

    12288:TYbfPfTYwQrPkdMmaza77JYxdLdAGDK/RCYhOZkqXQLLikpWN:TYb/TYwQrPkdMmazaHJYxpnDGRCYhRqT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\43fb39b3d92c58f5978fdba03fc26757.exe
    "C:\Users\Admin\AppData\Local\Temp\43fb39b3d92c58f5978fdba03fc26757.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:3804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\offconfig.temp
    Filesize

    598B

    MD5

    ba146d59d886086140143b5b57e6d50d

    SHA1

    6892ab18294fd9945a4da30fbade5a62a52836ae

    SHA256

    bc12167c6cab56687009a43d7881314715f5c05a41b936f634ba615e14e571ea

    SHA512

    974fafe3da5cb69c190894a0df5cbb153ce7035fd50eccdb57004ddd44929703450afe3095b38398f9186f2d1aeed731ab2d71b0609c929bb6f223bb9e371528

    Download Submit