Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

d4192fa327...8e.exe

windows7-x64

5

d4192fa327...8e.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 17:30 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4192fa327f4a7ae21acc33f4c61ce8e.exe

  • Size

    11.4MB

  • MD5

    d4192fa327f4a7ae21acc33f4c61ce8e

  • SHA1

    bd4e6b9250f593a3d2aa1f1df8f20a4839978106

  • SHA256

    e84eb6d7911c26174b2fb7d17299414b3bdf111bb7dd3f0ef39bc7ff3638cc98

  • SHA512

    31d474cebaf67e4a8a0d3b4b0d9219b2e9fc94ab959ab20972769061d00ee4b1c9cef019bee6f3a09664176f424ff8d14324e7dedf666798c9a47b83729824c2

  • SSDEEP

    196608:nNglPVmSBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPeXGNNNmmmmmmBBBxxxA2G4:nNiPVLBBEEE++CmZYOo+EEEEEEEBBBBn

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d4192fa327f4a7ae21acc33f4c61ce8e.exe
    "C:\Users\Admin\AppData\Local\Temp\d4192fa327f4a7ae21acc33f4c61ce8e.exe"
    1⤵
    • Drops file in System32 directory
    • Suspicious behavior: GetForegroundWindowSpam
    PID:1984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1984-0-0x00000000001C0000-0x00000000001C1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1984-2-0x0000000000400000-0x0000000000F74000-memory.dmp

    Filesize

    11.5MB

    Download

  • memory/1984-4-0x00000000001C0000-0x00000000001C1000-memory.dmp

    Filesize

    4KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.