Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

4f2a46d37a...76.exe

windows7-x64

5

4f2a46d37a...76.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    56s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 01:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4f2a46d37a49c4c133bb21020f53ec76.exe

  • Size

    110KB

  • MD5

    4f2a46d37a49c4c133bb21020f53ec76

  • SHA1

    2a9d6a8ce80c145c6a46a4abeb37c09cdbbea7fa

  • SHA256

    654c2a5cbc8d15687b03083418f7cf871ec250aa0e048ff07a65adb88bae3aef

  • SHA512

    0867d0e5affbb4c44fcd4f52ae5559b75e31a36c6123d99af68c190988ae04052d6f103c48b20c404c11e5c5e0499ddb2ec22995ab06bbd9b51238dedce278df

  • SSDEEP

    3072:AzW7GpD9VaPB7C/cfca1sMuf1/Dq42tOBNsYr94NW7:4W7MD92B7C/cfcaeMuhq8prAW

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 3 IoCs
  • Drops file in Program Files directory 20 IoCs
  • Drops file in Windows directory 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4f2a46d37a49c4c133bb21020f53ec76.exe
    "C:\Users\Admin\AppData\Local\Temp\4f2a46d37a49c4c133bb21020f53ec76.exe"
    1⤵
    • Drops file in System32 directory
    • Drops file in Program Files directory
    • Drops file in Windows directory
    PID:3052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3052-0-0x00000000001B0000-0x00000000001B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3052-3-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-4-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-5-0x00000000001B0000-0x00000000001B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3052-6-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-8-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-10-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-14-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-16-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-18-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-19-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-21-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-22-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-24-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-28-0x00000000759A0000-0x00000000759B2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3052-29-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download

  • memory/3052-33-0x00000000759A0000-0x00000000759B2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3052-34-0x0000000000400000-0x0000000000455000-memory.dmp

    Filesize

    340KB

    Download