Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

105/105.exe

windows7-x64

1

105/105.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    159s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 12:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    105/105.exe

  • Size

    18.3MB

  • MD5

    3ad1d296b16ea126a957792ab1309627

  • SHA1

    1eafb71597a069cbe60f8c9643dbfaea85350fb6

  • SHA256

    0c9c3e0b90168c3b0c6e19e86debb614aaad8a97e8db0e0e5933d2b387e5b12c

  • SHA512

    f76b6581d633a36e98ecdd98317fac5736e729448b515414ae0f45192cb5273a41cdb19c7badba2c0e9581eb60b6d1f38d363f89a73f7197c13fa5e70d84432b

  • SSDEEP

    393216:+00cFnANxacJAg6ZElIlTFGw0CKM8FZPG6IOyS/Uv/PhHv:+1cFnaXOZ8ITFGCkFOe0P

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\105\105.exe
    "C:\Users\Admin\AppData\Local\Temp\105\105.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Users\Admin\AppData\Local\Temp\105\Addons\bin\javaw.exe
      "C:\Users\Admin\AppData\Local\Temp\105\Addons\bin\javaw.exe" -version
      2⤵
        PID:2740
      • C:\Users\Admin\AppData\Local\Temp\105\Addons\bin\javaw.exe
        "C:\Users\Admin\AppData\Local\Temp\105\Addons\bin\javaw.exe" -jar "C:\Users\Admin\AppData\Local\Temp\105\105.exe"
        2⤵
          PID:2772

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • C:\Users\Admin\.oracle_jre_usage\494c679954cfa059.timestamp
        Filesize

        61B

        MD5

        3556f2b36f02caf7d5480b85a907b5c0

        SHA1

        a28687d881040493c106f84381805fce2eb367cb

        SHA256

        c122cfbb48140f3faaf1b4b0bbc66e4fcbe0f751b0f0f35b1183daab98943f09

        SHA512

        2a764ac051842854fddbcbbe21f352c4ead1743c13f8ae1371cc637054743ad475956a58d8c1d9920ed69fa529fa114b3a2a74555a75c322de4b7acbda19bffd

        Download Submit

      • memory/2220-30-0x0000000000400000-0x000000000041E000-memory.dmp

        Filesize

        120KB

        Download

      • memory/2220-34-0x0000000000400000-0x000000000041E000-memory.dmp

        Filesize

        120KB

        Download

      • memory/2740-11-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2740-28-0x0000000000140000-0x0000000000141000-memory.dmp

        Filesize

        4KB

        Download

      • memory/2740-29-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2740-31-0x00000000022D8000-0x00000000022E0000-memory.dmp

        Filesize

        32KB

        Download

      • memory/2740-32-0x00000000022E0000-0x00000000022E8000-memory.dmp

        Filesize

        32KB

        Download

      • memory/2740-33-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2740-35-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2740-6-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2740-72-0x0000000002240000-0x0000000004240000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-44-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-59-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-66-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-67-0x0000000000230000-0x0000000000231000-memory.dmp

        Filesize

        4KB

        Download

      • memory/2772-68-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-71-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-70-0x00000000022E8000-0x00000000022F0000-memory.dmp

        Filesize

        32KB

        Download

      • memory/2772-53-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download

      • memory/2772-73-0x0000000002250000-0x0000000004250000-memory.dmp

        Filesize

        32.0MB

        Download