Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

rad_windows_amd64.exe

windows7-x64

1

rad_windows_amd64.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/05/2024, 21:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    rad_windows_amd64.exe

  • Size

    17.5MB

  • MD5

    e27b241f28012a67d5fc63c65656769f

  • SHA1

    dff0dd2d853122b35a38f30dbcb89f342ee3d0d7

  • SHA256

    f4b160d4f2f46dfde9f4d6fefb40e4e187666a050286f5367138fd6e593069af

  • SHA512

    c1872ccb997135360548efb41d259764d7436d6ed379de575f5b3c4c18c2d875073e206b636f15a728c82908f6bf431171100e660f79217a72a87689f49c7d9a

  • SSDEEP

    196608:6/zxYBmJ9qC8sJKGbZ6H+kEZ8RnmfvABg4Chf/E+BfMH3:AqBmemPs8Vlb

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\rad_windows_amd64.exe
    "C:\Users\Admin\AppData\Local\Temp\rad_windows_amd64.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Windows\system32\cmd.exe
      cmd ver
      2⤵
        PID:348

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads