Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
90s -
max time network
96s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
26/07/2024, 12:14
Behavioral task
behavioral1
Sample
082838262284f3de9666a7d18751d5a0N.exe
Resource
win7-20240708-en
General
-
Target
082838262284f3de9666a7d18751d5a0N.exe
-
Size
236KB
-
MD5
082838262284f3de9666a7d18751d5a0
-
SHA1
ca7ee33501034da22a515dbf715b8d1e20c02786
-
SHA256
eb211f64579637e9ad028dea9cb075246b53f6eddadc8901abe943bf69ed9eea
-
SHA512
ffb8e11bc49cf02ca1b6260b3fe8f9542a1e56de291500436dfd5b4fab7f7fda6a5b626c4dfd7f2946b1a639ab03811480c742148b7fa457bfd1ad9b11e2fccd
-
SSDEEP
3072:RJ0Bs3o8A4M3riN6MhGkgS3PL6pb9t16n5OkhBOPC/N/FnncroP9:bwDeM7iNEkgiOb31k1ECJJ/F
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/2076-0-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral1/memory/2076-1-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral1/files/0x0005000000004ed7-7.dat upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 082838262284f3de9666a7d18751d5a0N.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
236KB
MD5d744f0143b7d9265359f730c924cedaf
SHA118fb7b16498153ea08831eb316dcb47b7592e22c
SHA256c94c2d7861993942b83f8ff1c6198e4b7b3d2b7a5cc7eb02e40805eb3430a003
SHA512acbdb8e5a88ba7065b671beeb355de62bdaa10c8f68c5d057938f701e2157645c460cbf1bede81fd9103967f2be4efb13c03797cb19838caa90cf2947ad5d1ba