Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-01-09...ia.exe

windows7-x64

7

2024-01-09...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 05:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-01-09_19bb14a793ee709cf9735072c26a99db_mafia.exe

  • Size

    411KB

  • MD5

    19bb14a793ee709cf9735072c26a99db

  • SHA1

    9ee6db78d5d60c3053af3ff5f0e5f1bd2bd30997

  • SHA256

    721417636fce64c7c6af14e8a06b9be50a827803db9b65e930d1dcf888b3ea59

  • SHA512

    92354fa732b66e7e9c7963a9d2dfbf15faade0ebcb4aca83b5b521d05273f934a6c4c7aba305d1c7263be0c1812d2a633c3fca0ebef9567c1c084fe9f3b3fc88

  • SSDEEP

    6144:gVdvczEb7GUOpYWhNVynE/mFJShtXRuXVQ54lGztcogm2cZmnqH:gZLolhNVyE5hAVQ5dzucZOqH

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-01-09_19bb14a793ee709cf9735072c26a99db_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-01-09_19bb14a793ee709cf9735072c26a99db_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2312
    • C:\Users\Admin\AppData\Local\Temp\2359.tmp
      "C:\Users\Admin\AppData\Local\Temp\2359.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-01-09_19bb14a793ee709cf9735072c26a99db_mafia.exe 49A9978F510105B519ED276FBDB3C6A5DCBD648A24BB2DE99E0512C8533C8233508A62CED35B869B26FBC0FB98BA56F4D27B21E5BE45A6B9379929E0E203A7A2
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\2359.tmp
    Filesize

    411KB

    MD5

    c4de0473e81d9a77eb0e354db8dfbddc

    SHA1

    80d8bb5be09e2c59141eafa0aab572ad271c8d55

    SHA256

    528017d8333837a89277de8a3ec63fa98c6e1d1fd205621a3bc6513954081fee

    SHA512

    1d339028705753b1c8ee2639f4b0c7f9c0f5059e4d7829f85b9899811308e43ec3efd8d738597c04f34ea1f16c899add63a86b34b8ce5e779a09d55a552b7cb7

    Download Submit