Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

ae6572c835...42.exe

windows7-x64

1

ae6572c835...42.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    102s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/06/2024, 17:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842.exe

  • Size

    2.7MB

  • MD5

    1d29e061230c99b6f1ec419dae582892

  • SHA1

    2c06e4dbb3e5c3b3627ac17dcc25220d8624a70c

  • SHA256

    ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842

  • SHA512

    8ab6a05e2b864b85b0c6813b06026358d1e43ffb4cff6f8d2f238e15dc93a3f8aa6c92918544310b3b3e49708522f88f1f96fee1e88452aeaf8eb5abcca1706f

  • SSDEEP

    49152:IcLWmb4Hs8J29ZCDIG6h7Sm36hBUigZd5GGrVLaS2rhxGdMUqWrS7dn8AnrlUltT:IAWmD8J29wDeGbUFhLaSCGdMKrS7++r

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842.exe
    "C:\Users\Admin\AppData\Local\Temp\ae6572c8352581046d36cafedc78369e87aa6b2867c5b1788b05a98da6119842.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\EsManagerPackage_00007552\CombineFile.combine
    Filesize

    5.0MB

    MD5

    85dc042cf2addb06c5e41279c33ae664

    SHA1

    96cff636eeae216856269f3250b451cba78f94e7

    SHA256

    65da91903f24ddfa4feeb301dced99c3f70a5577075225ba14506be5829a33da

    SHA512

    6aeaccd49ede994a8ad1e267b2b8126bd0928cb6a3eea1ed144e39bae3ad5db81221d8f63e76db412dbbee339fe5d66a75a3450ac3ee1f07a7903db605a126c2

    Download Submit

  • memory/3412-0-0x00000000002E0000-0x00000000008B8000-memory.dmp

    Filesize

    5.8MB

    Download

  • memory/3412-1-0x00000000002E0000-0x00000000008B8000-memory.dmp

    Filesize

    5.8MB

    Download

  • memory/3412-3-0x00000000002E0000-0x00000000008B8000-memory.dmp

    Filesize

    5.8MB

    Download

  • memory/3412-2-0x00000000002E0000-0x00000000008B8000-memory.dmp

    Filesize

    5.8MB

    Download

  • memory/3412-24-0x00000000002E0000-0x00000000008B8000-memory.dmp

    Filesize

    5.8MB

    Download