Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

66f0180bb1...78.exe

windows7-x64

7

66f0180bb1...78.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    145s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/01/2024, 06:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    66f0180bb1ca55abd82fb6b30fa58678.exe

  • Size

    294KB

  • MD5

    66f0180bb1ca55abd82fb6b30fa58678

  • SHA1

    2ab6ca357d6c7447d5a96bc0aed168b972d3b828

  • SHA256

    28df471246b1ec8a0bd55269d3e3564ace4ec47de96a38d2c09944de268d1c59

  • SHA512

    a7bf783ffac435f92da9da1af4639e678646897fe630c4776908e317c6a54bfd1e728046f598e6c9f86ed68dfd4ec291a4d3bd0dece06051589b005340b9adc4

  • SSDEEP

    6144:/06sehnP8zOWy66Z6jef4EVZDDdHv3CtnUviZ1RfxiRMz5A8uh36OjB5:/06s2nPeDh6YjI4E3DDxr0RfxMMzi8u/

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\66f0180bb1ca55abd82fb6b30fa58678.exe
    "C:\Users\Admin\AppData\Local\Temp\66f0180bb1ca55abd82fb6b30fa58678.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    PID:5084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Tsu7CB5DBA8.dll
    Filesize

    266KB

    MD5

    9e6bd3807c0e249433cfcddaf3161cd9

    SHA1

    3d353198159bf6e32b9433e5f6651d0269e913e3

    SHA256

    4729e1fb04110bb04dda9e4f27d34e2818fc561669e70b14be6e10793f0260e6

    SHA512

    38170093ee8b62a850ca506d885cdc9e59c976554ed5bc329469c0ef2c601ec096ea245ab2e6fc73c49e22404a06f24707864ce449ea46647345f9695a4e233a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{43855813-D179-2A11-1CE8-D54447A9A96E}\_Setup.dll
    Filesize

    205KB

    MD5

    ca1480443da28172f9325e1dee8a0f41

    SHA1

    8ecda0e65f1eeb04c0cbdd48899e809751fc3525

    SHA256

    23353a732c7eed79c495693d79bb4bf76654d7217da0f04ff268083ce7dc9125

    SHA512

    9cb8301fc2d5a40fa4587cdd8dd8f282494fe3614bdbc39a826509954604c1dd3316b69d97d2221e8c51cb1258e648fe8575d3bd7711f1b99c5ed64f16c42602

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{43855813-D179-2A11-1CE8-D54447A9A96E}\_Setupx.dll
    Filesize

    42KB

    MD5

    ed711549ddf9a4ae424c16c4c3812b91

    SHA1

    7f0111793b5917bab761163d1262a1258d61dffe

    SHA256

    5e2f3d94299b25d664333e854f4c42784b7a779fb3ca7a03fd28e5796fdbe39d

    SHA512

    375d3d0a8d91f1317526e1893f0c48307102d6a8af6c2845b949195b413182f5faa7a88e537d2dc1a480c07997f944f77fb8af775d00f4a561424d32a698e9d2

    Download Submit