Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

H5LsB5Wxip1.exe

windows10-2004-x64

1

Resubmissions

07/01/2024, 03:21

240107-dwdflsegc3 3

07/01/2024, 03:16

240107-dspdpsefg6 3

07/01/2024, 03:12

240107-dqergsdcej 3

07/01/2024, 03:09

240107-dnh15adcbl 8

07/01/2024, 03:05

240107-dlkryaeeg5 3

Analysis

  • max time kernel
    88s
  • max time network
    99s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/01/2024, 03:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    H5LsB5Wxip1.exe

  • Size

    719KB

  • MD5

    72b5e8fd69d842f13b5685c6d1f2d6bc

  • SHA1

    e28cba7719f151f8749b6b1323f14f748209dc72

  • SHA256

    81bfe8be46e4c703269c4eba30d92f428aff5beaefa618dc24b350131220a832

  • SHA512

    46a453f46db621602b97a710da8de828aa3836e00928fe176600a15457b70fceab2048eb6d07229f300969f948e56146854da1c2e54bb553ee743adec9883410

  • SSDEEP

    12288:18mLv3ZBE4PtszytnRozwB8NeUmYLKeUDIkbDJ1YjJ25:1xbc4sWtniXjPmIkb3oS

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\H5LsB5Wxip1.exe
    "C:\Users\Admin\AppData\Local\Temp\H5LsB5Wxip1.exe"
    1⤵
      PID:1120
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:3904
      • C:\Users\Admin\AppData\Local\Temp\H5LsB5Wxip1.exe
        "C:\Users\Admin\AppData\Local\Temp\H5LsB5Wxip1.exe"
        1⤵
          PID:5108

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads