Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-04-09...ia.exe

windows7-x64

7

2024-04-09...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 20:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-04-09_a6343fd79378217033264e29578773e5_mafia.exe

  • Size

    476KB

  • MD5

    a6343fd79378217033264e29578773e5

  • SHA1

    05b46b8a7899ddc9151d8bc2755692e846b7d720

  • SHA256

    0853cf66801176eb6c0f0b2ca995d740c1b6e1b74ff961871e24789d41b6ae17

  • SHA512

    3fb397f3f192df585a3f2aa737db55fe3b59150aadd2f213bd5461ba83703890549b83dd25603093187c676d6c1ae95355136f83c90a47615893ef8fd77ef633

  • SSDEEP

    12288:aO4rfItL8HRZ4s8HfGcZ0I8cGlnXqDbgci86m87K9wlsDpVFd:aO4rQtGRZ2fDZ0fnaApm8+9wlsDpVFd

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-04-09_a6343fd79378217033264e29578773e5_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-04-09_a6343fd79378217033264e29578773e5_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Users\Admin\AppData\Local\Temp\9231.tmp
      "C:\Users\Admin\AppData\Local\Temp\9231.tmp" --helpC:\Users\Admin\AppData\Local\Temp\2024-04-09_a6343fd79378217033264e29578773e5_mafia.exe 6CEE99D1A3F08FD0448E0A20E740162A290B0A2CD2D6A3BA7F71B830B5289978025F058BAF66E363474DD0B75271E756A3D315E0A6EC9A497B536F34C674B2CA
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:3004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\9231.tmp
    Filesize

    476KB

    MD5

    34a2707c3165e809d0e120da9305abdb

    SHA1

    7786f827702c95b947e359d901a8042b3ca81796

    SHA256

    d6ba6cb87026237b5b9da59379032dac0bfc35abe2b001a18239f67afbbef6b9

    SHA512

    e52b0e84a5eb1eddfe596f1fb7c1a99c4ae94f0dc06be53a3cc55de813317e8478b7def2d7808499b5cfb89c3d3ede44c4fd5c6dbc3a276939b9a709ede514cb

    Download Submit