Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a90168663c...4e.exe

windows7-x64

1

a90168663c...4e.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    156s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/07/2024, 03:32 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a90168663c5527986c532282ff04ba334a68e9a2c2503acc2c2b53e86fc0b04e.exe

  • Size

    3.6MB

  • MD5

    308008e2782231b979c66ba3dac60303

  • SHA1

    d0455cc0bfc24953077ee9ee7c43d90be4dcc247

  • SHA256

    a90168663c5527986c532282ff04ba334a68e9a2c2503acc2c2b53e86fc0b04e

  • SHA512

    a1cbb7c81f370e0d191911b9f8031761e623e26a0b99a1ae26b82c33c3aa5c7380df671290fca16652a061c630db3e7bbf77f4c82f86ce43e070134405f11281

  • SSDEEP

    49152:ZgkqvBhxG3Dq1BWNRc058oTNFxSPKx7WQ1opbg2A35ApQwF:ZgZw3DqrERc0OoTNFxSCx7Wn82A3SF

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\a90168663c5527986c532282ff04ba334a68e9a2c2503acc2c2b53e86fc0b04e.exe
    "C:\Users\Admin\AppData\Local\Temp\a90168663c5527986c532282ff04ba334a68e9a2c2503acc2c2b53e86fc0b04e.exe"
    1⤵
      PID:4216

    Network

    • flag-us
      DNS
      20.160.190.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      20.160.190.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      98.58.20.217.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      98.58.20.217.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      45.19.74.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      45.19.74.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      157.123.68.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      157.123.68.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      56.126.166.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      56.126.166.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      192.142.123.92.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      192.142.123.92.in-addr.arpa
      IN PTR
      Response
      192.142.123.92.in-addr.arpa
      IN PTR
      a92-123-142-192deploystaticakamaitechnologiescom
    • flag-us
      DNS
      73.144.22.2.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      73.144.22.2.in-addr.arpa
      IN PTR
      Response
      73.144.22.2.in-addr.arpa
      IN PTR
      a2-22-144-73deploystaticakamaitechnologiescom
    No results found
    • 8.8.8.8:53
      20.160.190.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      20.160.190.20.in-addr.arpa

    • 8.8.8.8:53
      98.58.20.217.in-addr.arpa
      dns
      71 B
       131 B
       1
      1

      DNS Request

      98.58.20.217.in-addr.arpa

    • 8.8.8.8:53
      45.19.74.20.in-addr.arpa
      dns
      70 B
       156 B
       1
      1

      DNS Request

      45.19.74.20.in-addr.arpa

    • 8.8.8.8:53
      157.123.68.40.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      157.123.68.40.in-addr.arpa

    • 8.8.8.8:53
      56.126.166.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      56.126.166.20.in-addr.arpa

    • 8.8.8.8:53
      192.142.123.92.in-addr.arpa
      dns
      73 B
       139 B
       1
      1

      DNS Request

      192.142.123.92.in-addr.arpa

    • 8.8.8.8:53
      73.144.22.2.in-addr.arpa
      dns
      70 B
       133 B
       1
      1

      DNS Request

      73.144.22.2.in-addr.arpa

    • 8.8.8.8:53

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4216-0-0x0000000000400000-0x0000000000791000-memory.dmp

      Filesize

      3.6MB

      Download

    • memory/4216-1-0x0000000000400000-0x0000000000791000-memory.dmp

      Filesize

      3.6MB

      Download

    • memory/4216-2-0x0000000000400000-0x000000000047F000-memory.dmp

      Filesize

      508KB

      Download

    • memory/4216-3-0x0000000000400000-0x0000000000791000-memory.dmp

      Filesize

      3.6MB

      Download

    • memory/4216-4-0x0000000000400000-0x000000000047F000-memory.dmp

      Filesize

      508KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.