Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

89e3fcf78e...32.exe

windows7-x64

6

89e3fcf78e...32.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    140s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2024, 15:36 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    89e3fcf78ee6adf150161dcf968cdc32.exe

  • Size

    575KB

  • MD5

    89e3fcf78ee6adf150161dcf968cdc32

  • SHA1

    c8e73d0992134fa1caa619bc0a516d0992bdcb8e

  • SHA256

    8d7e1881b51aabc18d7f115d81670bb54db5eaa4ac7ff4b3ec7a02266270322c

  • SHA512

    552e1ce73443cf23e3a2afdb43efd12f1e36cdb8c8134938611f3b3815a70cd290609fefe88c1005cc2f3ad58bd78bce5e2910f3d9185d5ee458b6aa329e3282

  • SSDEEP

    12288:0bwxo/yRtdBcbkoUQEk2Ehrs2gyhUbDXWHVzrG7i:jxNZEU4hI2VqsVmi

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\89e3fcf78ee6adf150161dcf968cdc32.exe
    "C:\Users\Admin\AppData\Local\Temp\89e3fcf78ee6adf150161dcf968cdc32.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1888-0-0x0000000000400000-0x00000000005DA000-memory.dmp

    Filesize

    1.9MB

    Download

  • memory/1888-10-0x0000000000400000-0x00000000005DA000-memory.dmp

    Filesize

    1.9MB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.