Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

96728af8af...d6.exe

windows7-x64

7

96728af8af...d6.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    92s
  • max time network
    94s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/05/2024, 00:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    96728af8aff5c89b720e76d54415a40ec2f2a22d7a5cbc5e0e6decb2270f43d6.exe

  • Size

    73KB

  • MD5

    322e0f5c080edaa7904a9c3eeeec9246

  • SHA1

    5694a642f67fc701491d84df3b03c2895ee0d713

  • SHA256

    96728af8aff5c89b720e76d54415a40ec2f2a22d7a5cbc5e0e6decb2270f43d6

  • SHA512

    7b4382e785403e4cc8a6407827039aeee9eebb8771880484079870b9000c813a82f67f083302adc03de859a0fea5f29cbd2013b59f124174f3c8f3485c603b7b

  • SSDEEP

    1536:1K7ylw2jlA6WBRCJKObnTNBbJ6I4WMJvdDlQDhI5erKT3F9:c7H6rbTNSImvplQVIQ09

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in System32 directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\96728af8aff5c89b720e76d54415a40ec2f2a22d7a5cbc5e0e6decb2270f43d6.exe
    "C:\Users\Admin\AppData\Local\Temp\96728af8aff5c89b720e76d54415a40ec2f2a22d7a5cbc5e0e6decb2270f43d6.exe"
    1⤵
    • Drops file in System32 directory
    PID:2996
    • C:\Windows\SysWOW64\eavdevoaf.exe
      "C:\Windows\SysWOW64\eavdevoaf.exe"
      2⤵
      • Executes dropped EXE
      PID:3452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\SysWOW64\eavdevoaf.exe
    Filesize

    70KB

    MD5

    e774fbc1fd437238ae8fc2b5d690e772

    SHA1

    71cfff3962e9ea09991f33f90be572c20fc03a6c

    SHA256

    2e41da14b73cbb31f347d752bf57ca222bc32feaa85cfe34784be965415033bf

    SHA512

    339cae8f43c30caafb96c43d9d1d47ee385c8ee3b9ba6f99ee096347ca09570c819bd27536c71b4260f02959f347573506edf74512621106e381d415e0972965

    Download Submit

  • memory/2996-0-0x0000000077052000-0x0000000077053000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2996-4-0x0000000000400000-0x0000000000403000-memory.dmp

    Filesize

    12KB

    Download