Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

b0db234436...34.exe

windows7-x64

9

b0db234436...34.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/05/2024, 23:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b0db234436f22c8e8ffa8710188e99ca67149df40fad9c76fe7c6560ccd77434.exe

  • Size

    5.7MB

  • MD5

    fb8e5e0af8afa722693c289e42bec423

  • SHA1

    29c11d35eb8638aa8e1218bf8cca17a83a0a211e

  • SHA256

    b0db234436f22c8e8ffa8710188e99ca67149df40fad9c76fe7c6560ccd77434

  • SHA512

    8534fb82d0c85e063c3667912f477dbd7259f56a59f3f33534dc179469709404c460f5a87ead62ea03b129970f6a8215d8acd82fc1ca94c70137d9acb5d65cf2

  • SSDEEP

    98304:+dHMC+By0AOzWeGlPCk2IabgwxXQ6lXtGscl5M1QN7pA2q7NOLfkV5idp/:+/SACkCkyhXQ6ldGsTQN7pDzkjir/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b0db234436f22c8e8ffa8710188e99ca67149df40fad9c76fe7c6560ccd77434.exe
    "C:\Users\Admin\AppData\Local\Temp\b0db234436f22c8e8ffa8710188e99ca67149df40fad9c76fe7c6560ccd77434.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    652B

    MD5

    f84d2583fb28b9da4f4b6d3a03246b2e

    SHA1

    6ddcd86e68d8058102df2f066b62bb675fa28184

    SHA256

    26e94187c80a750bdd1416df7d1241d4c834462c92318e620ec33160ccf6da0c

    SHA512

    e8e312aea536a8dd579a661043bdae121d2a64cb53449b0406e9a4f6a05c4efb5ed9a09a3c4505be8ef76ed764871319f48d459abd79fb39a9acae9132f9c7e6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    5KB

    MD5

    d9987a1494ec37c1f5443c14ebf1c8f6

    SHA1

    d2782ba155083722e8e569f137f91b749864a289

    SHA256

    d097fa55083e2c76560b68eb09281204404415e9814b45fce340e17f98237dbe

    SHA512

    c91f5f791d37b7690bfe436417c40d4db4bb46740a3c994c227ba5e8110b9e3bc2fa0f00fcc565feffe4e41a3b04eb59e5c9e618c34b660910958f83762af200

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    310B

    MD5

    0938abba04ec73d34ba854e8fb3e4af7

    SHA1

    79528333680b254061bb8062ca7769cb0738499d

    SHA256

    38865aeb71d6bcf234243c0273950b5942564af26b72d3d9962a5b53866729f9

    SHA512

    ecd3acd2f98079383d4bff97179b4b73c526c205b79bbb2d74e3b611c59052c68ff313ed696c7eccb0ed46fa92e006aa1803da96637ec70d74d9c2949f08b715

    Download Submit