Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
07/01/2024, 06:38
Static task
static1
Behavioral task
behavioral1
Sample
484809933fcb00165c374344f7757353.exe
Resource
win7-20231215-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
484809933fcb00165c374344f7757353.exe
Resource
win10v2004-20231215-en
1 signatures
150 seconds
General
-
Target
484809933fcb00165c374344f7757353.exe
-
Size
296KB
-
MD5
484809933fcb00165c374344f7757353
-
SHA1
7e6bd7b7c6121962be58c7e34f178f0e07f3c2cf
-
SHA256
2358578704a91c6a7a4fda21154e88c54e4016500209606f9ddfe498a9be4db7
-
SHA512
1a38ec38bb7ace7bdea4f97b2b31496d33616001ad2d0c682457fed6c84547dbd6c060e44b7639528ef36e5a982753de3479fde559eb844a1719e2ff02bfaa1c
-
SSDEEP
6144:CiYwmJljLzzJe2cQeRIgoxdkSYsAPzovUf1+CZWL:CF9HmRIVsdsSzo+1+0m
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 4 IoCs
description pid Process procid_target PID 2964 wrote to memory of 3016 2964 484809933fcb00165c374344f7757353.exe 14 PID 2964 wrote to memory of 3016 2964 484809933fcb00165c374344f7757353.exe 14 PID 2964 wrote to memory of 3016 2964 484809933fcb00165c374344f7757353.exe 14 PID 2964 wrote to memory of 3016 2964 484809933fcb00165c374344f7757353.exe 14