Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

6931c20e28...35.exe

windows7-x64

6

6931c20e28...35.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    51s
  • max time network
    51s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/06/2024, 20:55 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6931c20e2887ff45b2a189881da81ac661a087d5829349aba78dc159717c3535.exe

  • Size

    3.4MB

  • MD5

    13904db1658c10b7cc2eda48ed173bd7

  • SHA1

    50cb96ad6e957fc20c4e692a8ef90ed0dabe1999

  • SHA256

    6931c20e2887ff45b2a189881da81ac661a087d5829349aba78dc159717c3535

  • SHA512

    d95f8400dcfecf52c44c514604caf6b49bbe75df3132b13838e17a63490afdffa713a2ae007ad43302b74d0449459d4a35326a9c9d1812b5f36d731a45708d1a

  • SSDEEP

    98304:5zjPN+2qXoQm1FrpwAPQiIU/T0Axy36IsSctHeQO2wF/qT8nHkd4zuob60aVdpYw:5zjPN+2qXoQm1FrpwAPQiIU/T0Axy36N

Score
6/10
bootkitpersistence

Malware Config

Signatures

  • Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs

    Bootkits write to the MBR to gain persistence at a level below the operating system.

    bootkitpersistence
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6931c20e2887ff45b2a189881da81ac661a087d5829349aba78dc159717c3535.exe
    "C:\Users\Admin\AppData\Local\Temp\6931c20e2887ff45b2a189881da81ac661a087d5829349aba78dc159717c3535.exe"
    1⤵
    • Writes to the Master Boot Record (MBR)
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2556

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.