Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

22edda288b...af.exe

windows7-x64

7

22edda288b...af.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 19:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    22edda288b8c7a559ffbedeb8cba373279ff15ad783f252df49d67baaab021af.exe

  • Size

    2.1MB

  • MD5

    0eff66b180ab834884434059632670e7

  • SHA1

    9bcf5e8df1ecd26f2e60f07f4180dcde14458d27

  • SHA256

    22edda288b8c7a559ffbedeb8cba373279ff15ad783f252df49d67baaab021af

  • SHA512

    ffb0e1bcc41edf9a9a8bb35c4bb55c1a0a23e8826f19dde604850aa36c9662e5ab61261316ac4eaf4c4322856202cea4c6c996b1e5405b4f9d311c65fb843f8f

  • SSDEEP

    24576:mcyfH8OW2AT2keCBrmsvpxQiRHMblNTp4sSMdgLG6r3afFIX8:mHfHc2kzRvU2snWsVuLJrQ

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\22edda288b8c7a559ffbedeb8cba373279ff15ad783f252df49d67baaab021af.exe
    "C:\Users\Admin\AppData\Local\Temp\22edda288b8c7a559ffbedeb8cba373279ff15ad783f252df49d67baaab021af.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1200

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • \Users\Admin\AppData\Local\Temp\ExuiKrnln_Win32_20230316.lib
    Filesize

    1.3MB

    MD5

    9696db084254333647ac5acc80ef096f

    SHA1

    489b075452c5c619745de62635a334019b45065d

    SHA256

    da9cc42cc6e4e76f976322b982e23b9251afa9629fec3dcc4207b4e08c92eaa3

    SHA512

    99ac9be418a7a944d21a24cbc50de76e96766be96c897cd0a898d63e0797f340b8275b0c15a9dd2a1a57b8abf66679de6d77030dbdaf060b58fc537888c0f721

    Download Submit