Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

0cd81c0e9b...08.exe

windows7-x64

9

0cd81c0e9b...08.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    103s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/05/2024, 07:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cd81c0e9b9df7fe1ff0edb2d40baf88121800b1df2bcea3be8542bebf886908.exe

  • Size

    5.7MB

  • MD5

    8cb44d0f6a6124fa55b340f34c8dabc6

  • SHA1

    87e916376846f6fb1e558e94847885625f63786f

  • SHA256

    0cd81c0e9b9df7fe1ff0edb2d40baf88121800b1df2bcea3be8542bebf886908

  • SHA512

    d6e2268802ebbe2545904334273e70e37216dafd34e384cc92fff28f583eb8e494959da99c425f941fb800b57d4e6577289f053f58222b56450dc48951fa9b51

  • SSDEEP

    98304:j/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmnkVV:mMD+cpvJ/4H3nmghWoa/fsysMF4JD85s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0cd81c0e9b9df7fe1ff0edb2d40baf88121800b1df2bcea3be8542bebf886908.exe
    "C:\Users\Admin\AppData\Local\Temp\0cd81c0e9b9df7fe1ff0edb2d40baf88121800b1df2bcea3be8542bebf886908.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3584

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    657B

    MD5

    eea8b8644d561ff52be2bcb26f01ed4a

    SHA1

    6b989d2be2ca9dd0d5b7c3cb7f778af87ad15d6e

    SHA256

    e3a953b87d35a073c6c3821276006dd840a70db3f8813f4533ffa760ee0da128

    SHA512

    433b2d45392c5ef580875d207405ec233661e41441ac901b6526675b397ad5f3fca89f6272d58cda841f2760d4984da988be4ab7caf3205563151943d91fd950

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    4KB

    MD5

    80d52573b9e356de3514ed40cecedde5

    SHA1

    910102527657aa156bb5880800d46d7dde3bffb4

    SHA256

    8598103c87ba1b1a1994f6794566e75cd073f510223ad8a51e69e4f3f00244f2

    SHA512

    cbfe5b9c69f2bda7a334796a8c7b5afaeae34c2be89926f4052a10d51293ee73b64677bc5afab62b3096dc96017a8726baaeceab3959fa335fafd973c2b44907

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\yjs_log\log.log
    Filesize

    315B

    MD5

    7e9d4f003b2acfec939693c7b2740582

    SHA1

    dc8e9ce58e3e8625086f41f24d68ee66b164b009

    SHA256

    f3f49a1f8f3d2f8b017e3e05a7a7e20d9d73d65dc08af50053df5f959fb41479

    SHA512

    bdfc2e3fcc42d8f02e23f4f8fc544898666bba6bd109034b9f697a1b2a67df6582da37b7f242bcc92674961dabe9f5c72e7934c1e7de47ab1aa4ec8576773241

    Download Submit