Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-28...ia.exe

windows7-x64

7

2024-05-28...ia.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 10:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-05-28_7c62d79509e3939ef3cb5c4f2816db40_mafia.exe

  • Size

    411KB

  • MD5

    7c62d79509e3939ef3cb5c4f2816db40

  • SHA1

    cb98d9187ff002068f13a3ad5a8d8630cbfdf531

  • SHA256

    2e2bd861f0460323c07dd53a3f11f0d1f80a74beec087c81de0cacf362697336

  • SHA512

    069dc9bff28016fa5a9463dfde1beb0fe60e56be6ed1b0404ee41848a9af36458467f5cb14091acc3eaa4ef6d6dd674eccc1ccd74ac73634223e714dfccdfafb

  • SSDEEP

    6144:gVdvczEb7GUOpYWhNVynE/mFlppaiiYMa6wSVsNwBdt1eJg0xPjqHI:gZLolhNVyEg8iiWSVsNSdt1OvjqHI

Score
7/10

Malware Config

Signatures

  • Deletes itself 1 IoCs
  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-05-28_7c62d79509e3939ef3cb5c4f2816db40_mafia.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-05-28_7c62d79509e3939ef3cb5c4f2816db40_mafia.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Users\Admin\AppData\Local\Temp\8575.tmp
      "C:\Users\Admin\AppData\Local\Temp\8575.tmp" --pingC:\Users\Admin\AppData\Local\Temp\2024-05-28_7c62d79509e3939ef3cb5c4f2816db40_mafia.exe 85CDBDA2B51E8D59B108619046BBD8A0640EF8E6D628184B6DD063C93B662D06A1228F72520C0AE3812BBAA42EF33B999F7AD36ECF7B6E4A496A56B22A4B9A01
      2⤵
      • Deletes itself
      • Executes dropped EXE
      PID:2056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\8575.tmp
    Filesize

    411KB

    MD5

    1576827455cf4921b730c2d7a3aba2f7

    SHA1

    3e6d227df88d397ceba4bae0b83479e2cadf6b69

    SHA256

    d0bd6375aaa108cfa5c5fd9eabbd0c74194e2c5226fcaa5ddf8736e914203172

    SHA512

    865ecfb613002485f9356c15e651eae58dfe864bff2e8acb8a35aabab74abdba5dcd1f9e96b18844f4c6a8a2a766c286038780dc15ff460b13b771867982c37e

    Download Submit