Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Ordre D’E...21.exe

windows7-x64

10

Ordre D’E...21.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/02/2024, 02:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Ordre D’Extensió 27072021.exe

  • Size

    220KB

  • MD5

    1d50f83e3d813173ef100b3fbea88c87

  • SHA1

    9eecc7999b00c62b8f18fb44fefd951ab4b8ad3e

  • SHA256

    3e79a34e76245c626a025065772857f692c1a413f6b2345b39b358fdb68f46bd

  • SHA512

    60aa495aa0e0fbf61c5a5781c55c46491c8ecb387364a4b88eb75b73a3cc5189ae99bbce9b44456e350615e2de487f63b72d1bfb9a25188c7299b08a0aed5618

  • SSDEEP

    3072:nhKiUNKQ28oiKNHZYWT7Y27RZycTcSBfnu/QZUNMRh:QK/8kMkkMZhcSdu/F

Score
10/10
guloaderdownloader

Malware Config

Signatures

  • Guloader,Cloudeye

    A shellcode based downloader first seen in 2020.

    downloaderguloader
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Ordre D’Extensió 27072021.exe
    "C:\Users\Admin\AppData\Local\Temp\Ordre D’Extensió 27072021.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2640-2-0x00000000002B0000-0x00000000002C3000-memory.dmp

    Filesize

    76KB

    Download

  • memory/2640-3-0x00000000002B0000-0x00000000002C3000-memory.dmp

    Filesize

    76KB

    Download