Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

e4197dbec9...cs.exe

windows7-x64

7

e4197dbec9...cs.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    139s
  • max time network
    126s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/05/2024, 16:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e4197dbec945cda040f3ae1c533fce20_NeikiAnalytics.exe

  • Size

    29KB

  • MD5

    e4197dbec945cda040f3ae1c533fce20

  • SHA1

    9b7849c46164399d0931d7b2b71877dba0798850

  • SHA256

    61186a15f693665a5962a7a652dadfcd667454cb0b422149c12cb3cecb869601

  • SHA512

    fe091fb92db1c805a63f71283406f55f572a0b92018f4f00b983c0933f66aa9e6c716715d0a82f420ed3ff2255e4a73816a45c477b36fdd3006f477dc9e1ef92

  • SSDEEP

    768:ITRfpN0pOy3OzeXmOGXbJOlB2vsLCik5dAy7b6lSy:IHzzeWHXbJGB2EOik5h36lV

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\e4197dbec945cda040f3ae1c533fce20_NeikiAnalytics.exe
    "C:\Users\Admin\AppData\Local\Temp\e4197dbec945cda040f3ae1c533fce20_NeikiAnalytics.exe"
    1⤵
      PID:852

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\My Downloads\Winzip 8.0 Patch.exe
      Filesize

      29KB

      MD5

      8a8a2945fac74ca4fe4fc45d9ba57d98

      SHA1

      8371b253048f4da7db480364cc698ab4cfae76bc

      SHA256

      33734c3a873fb5dc14fd2db50938aa9a586651eda0f1358739803c73c5900df0

      SHA512

      54f68f41dae5a9e2009eeed7b9f1076eb60ff8913e93f2fe354f30e5f5b0a3ae70cde4532095ff72ab7d5dccbe2093ccc9f8210f5b3032a74d6abb0fd2e37782

      Download Submit

    • memory/852-0-0x0000000000400000-0x000000000041A000-memory.dmp

      Filesize

      104KB

      Download

    • memory/852-101-0x0000000000400000-0x000000000041A000-memory.dmp

      Filesize

      104KB

      Download