Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-04-05...ia.exe

windows7-x64

7

2024-04-05...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/04/2024, 22:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-04-05_381de8e80e4f0429674d794b5aafdf1b_mafia.exe

  • Size

    479KB

  • MD5

    381de8e80e4f0429674d794b5aafdf1b

  • SHA1

    485591e0d2856481bee90c5b956c4a743a1c401b

  • SHA256

    ee810903aecfdbf99f7afe8173ab694a5ed600c20b2a65f6a0c89bea02faf21a

  • SHA512

    5c12c4ee034d8c65578bab40b325dd1750013a74c0ee70f013b0b5c78018cdb568a9a33de0f4d59b9474a1c9409c42fe1ab09c1a68aedd5519ac527380a20139

  • SSDEEP

    12288:bO4rfItL8HAJmL366yNj5R55B2dBxTZxJt475UO:bO4rQtGA4L3m5b5ojt4VUO

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-04-05_381de8e80e4f0429674d794b5aafdf1b_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-04-05_381de8e80e4f0429674d794b5aafdf1b_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Users\Admin\AppData\Local\Temp\9BB3.tmp
      "C:\Users\Admin\AppData\Local\Temp\9BB3.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-04-05_381de8e80e4f0429674d794b5aafdf1b_mafia.exe 362A276D9FBE858BD31903BF0BC3544B83D53569F83F4BD2BA8E8C3F71E2CA03ACF96909990AC7BDED31EC25859955BAF2B72D841AD08F6973483016A628D265
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\9BB3.tmp
    Filesize

    479KB

    MD5

    35c89c4767aac30621eca8dc94c80ee3

    SHA1

    d0f6b9c41b1d6264b2dee5ed80a76ecfcbda40df

    SHA256

    f75d252582c6ae8191e789c1601f17da3850b58f8a55d6bf072a485b84cc3a57

    SHA512

    a130b2a5720768550cc426e733cff04367993e4ce9fcd12342af7fd436e42851610e62961906adc0b647895641d8ab3ef8e1f8b1bab2b9e294d616f9ae2f507f

    Download Submit