Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

53241dc3a5...0f.exe

windows7-x64

1

53241dc3a5...0f.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    156s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/01/2024, 09:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    53241dc3a593a981d688a347de29090f.exe

  • Size

    264KB

  • MD5

    53241dc3a593a981d688a347de29090f

  • SHA1

    d35da5f0dc737f39738bfaccee5ada29acf0c7fb

  • SHA256

    45ec4756bb61e789be56aaccfabd48cd06d37e40fa3d3f31dd35be8a96e2f3b8

  • SHA512

    036a02886ccb8d6da02242bad1235d6c073d2a1120bf52817c3bdf5b2f3e60d02c1cd3bc52ce6d6e8a7533d1237a36ad644b1794fbc8c6d057845da4a100c6a7

  • SSDEEP

    6144:rmhzG8p2PRgepFjZL02vIMIEpo2qswSdqLav69uViTD1jDUbeHgnoRo6:KJGkYgepBOA9IeErS/v69hc6Ro6

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\53241dc3a593a981d688a347de29090f.exe
    "C:\Users\Admin\AppData\Local\Temp\53241dc3a593a981d688a347de29090f.exe"
    1⤵
      PID:1452
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1452 -s 560
        2⤵
        • Program crash
        PID:1432
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 1452 -ip 1452
      1⤵
        PID:1912

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1452-0-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-1-0x0000000000730000-0x000000000076E000-memory.dmp

        Filesize

        248KB

        Download

      • memory/1452-2-0x0000000000600000-0x0000000000601000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1452-3-0x00000000024D0000-0x0000000002673000-memory.dmp

        Filesize

        1.6MB

        Download

      • memory/1452-5-0x0000000000770000-0x0000000000771000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1452-4-0x0000000000610000-0x0000000000612000-memory.dmp

        Filesize

        8KB

        Download

      • memory/1452-6-0x0000000000730000-0x000000000076E000-memory.dmp

        Filesize

        248KB

        Download

      • memory/1452-8-0x0000000002330000-0x0000000002420000-memory.dmp

        Filesize

        960KB

        Download

      • memory/1452-7-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-10-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-9-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-11-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-12-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-14-0x00000000022A0000-0x00000000022A2000-memory.dmp

        Filesize

        8KB

        Download

      • memory/1452-13-0x0000000002680000-0x0000000002820000-memory.dmp

        Filesize

        1.6MB

        Download

      • memory/1452-15-0x0000000000010000-0x000000000007A000-memory.dmp

        Filesize

        424KB

        Download

      • memory/1452-16-0x0000000002230000-0x0000000002254000-memory.dmp

        Filesize

        144KB

        Download

      • memory/1452-17-0x0000000000730000-0x000000000076E000-memory.dmp

        Filesize

        248KB

        Download