Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

1cc7fe8816...61.exe

windows7-x64

1

1cc7fe8816...61.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/06/2024, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1cc7fe881637548781eef7a0ea00f13d4d260e9a4cf34b207eb3c59f940bf861.exe

  • Size

    1.1MB

  • MD5

    33e2ce9bab1e96326b72d41792603c04

  • SHA1

    e08365d6478ada76d027653bad8f1108203516bb

  • SHA256

    1cc7fe881637548781eef7a0ea00f13d4d260e9a4cf34b207eb3c59f940bf861

  • SHA512

    613bda5a8c402753f85012d41ed5fb471f47a9147447ad76a70aec359747a4e2bc6c76e443646241f4bc3175e9f711b6b7dd97befb1c8122c5be7bafbf9eb953

  • SSDEEP

    24576:tAHnh+eWsN3skA4RV1Hom2KXMmHaUzuYVYrJtcEYuWmc5:Mh+ZkldoPK8YaU0r0ua

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1cc7fe881637548781eef7a0ea00f13d4d260e9a4cf34b207eb3c59f940bf861.exe
    "C:\Users\Admin\AppData\Local\Temp\1cc7fe881637548781eef7a0ea00f13d4d260e9a4cf34b207eb3c59f940bf861.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:2756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\polygamodioecious
    Filesize

    265KB

    MD5

    4397b5e1e958b99bbc1d041824018c80

    SHA1

    04fd341fd866771a3d4c3fb75b3d9d9aa13df1fb

    SHA256

    77761023eba7fadce42f5d7e802ac076acc77d82e630c19e272dd07cdfd664c6

    SHA512

    ea585e95cc74c7d7fad5c126592d23d1b9d8ef60c7fe95fe9c07c5c26fd9ab91c33a22dc4c30677feca77eb76fc501de8e400de4f19194b428d9ee274e21c5b0

    Download Submit

  • memory/2756-11-0x00000000001F0000-0x00000000001F4000-memory.dmp

    Filesize

    16KB

    Download