Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

test44.exe

windows7-x64

7

test44.exe

windows10-2004-x64

7

test44.pyc

windows7-x64

3

test44.pyc

windows10-2004-x64

3

Analysis

  • max time kernel
    0s
  • max time network
    0s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    23/06/2024, 23:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    test44.exe

  • Size

    17.8MB

  • MD5

    6784fd95543edccd1970ae17741f9b11

  • SHA1

    1ab4658f3968745ac846b0f86a2c5834a86cac76

  • SHA256

    f7f14ccc2a131248e79a38e5cb862cc7914e601309c24302c3b08d111fd0e21f

  • SHA512

    f38b46be4bd0809bb71c0243e21609138373f194042eea15d3fc36790abf09d3f51ce1d8c0eb85195aad39c6501d22efd63db2cb3fae3e4853fb77be76251721

  • SSDEEP

    393216:OLQtsud1+TtIiFbS8uARuAQhFXmbz3EWM60XMvn6C:aQtsC1QtIf8uAgh8LEV3XGnT

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\test44.exe
    "C:\Users\Admin\AppData\Local\Temp\test44.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Users\Admin\AppData\Local\Temp\test44.exe
      "C:\Users\Admin\AppData\Local\Temp\test44.exe"
      2⤵
      • Loads dropped DLL
      PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI29322\python311.dll
    Filesize

    5.5MB

    MD5

    387bb2c1e40bde1517f06b46313766be

    SHA1

    601f83ef61c7699652dec17edd5a45d6c20786c4

    SHA256

    0817a2a657a24c0d5fbb60df56960f42fc66b3039d522ec952dab83e2d869364

    SHA512

    521cde6eaa5d4a2e0ef6bbfdea50b00750ae022c1c7bd66b20654c035552b49c9d2fac18ef503bbd136a7a307bdeb97f759d45c25228a0bf0c37739b6e897bad

    Download Submit