Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-02-23...ia.exe

windows7-x64

7

2024-02-23...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23/02/2024, 04:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-02-23_55dbeacea344b92beb781b2edeb0ce98_mafia.exe

  • Size

    476KB

  • MD5

    55dbeacea344b92beb781b2edeb0ce98

  • SHA1

    a5aade4898bdb4691c2295575876832e1681b81e

  • SHA256

    568c5f6cab4a229be77f86b8f7707d7abf09ee285210f570bb06443c9f27c0d9

  • SHA512

    1ab33ebca6d3c54413877b222586086af20eab4b351d430db348287135f35917b03030bfc3e065b96e0f8a93bf32415093c6b505ddf0b64b7d972b4ed1babf23

  • SSDEEP

    12288:aO4rfItL8HRIdWGvhADVclXe+sqcOwVp7K9wlsDpVFd:aO4rQtGRAODulXeh5Vp+9wlsDpVFd

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-02-23_55dbeacea344b92beb781b2edeb0ce98_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-02-23_55dbeacea344b92beb781b2edeb0ce98_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2964
    • C:\Users\Admin\AppData\Local\Temp\4F68.tmp
      "C:\Users\Admin\AppData\Local\Temp\4F68.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-02-23_55dbeacea344b92beb781b2edeb0ce98_mafia.exe 8FB404D3E5FEDCE474EEB67CBDE09C3F939FA80EFFCE6D45C5F8B539C764170DCAA6BF3B7EEE7CE25B082CF891616F77A37A240880DBF034B3833712DCE9BCD5
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2624

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\4F68.tmp
    Filesize

    476KB

    MD5

    96bce1271f84de13a061eb3abdc4431a

    SHA1

    048375c5f579ae330c8d876c4b44229dcb9932b4

    SHA256

    fcb31c01a4754acf7ba0dbf4dd319ba04b98e1da6a106d20a90da78e12945e9a

    SHA512

    7576ae16e021ce8c185d6e55891f80684ac6e2b61ff9fd3883f3b0284d811512f502a25c52e1349c945ee714d168ad473081054a687bb7a6a82805e37f6573e2

    Download Submit