b1728c4a31c5b87e356ba36d2f337ad9e3f4527afca4ce6140a1df15e701293d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

147.exe

windows7-x64

1

147.exe

windows10-2004-x64

1

2857381323.exe

windows7-x64

1

2857381323.exe

windows10-2004-x64

1

XLSX202400...st.exe

windows7-x64

1

XLSX202400...st.exe

windows10-2004-x64

1

setupPDF.exe

windows7-x64

1

setupPDF.exe

windows10-2004-x64

1

setupPDF2.exe

windows7-x64

1

setupPDF2.exe

windows10-2004-x64

1

setup登�...��.exe

windows7-x64

1

setup登�...��.exe

windows10-2004-x64

1

新0_23.exe

windows7-x64

1

新0_23.exe

windows10-2004-x64

1

表格8-1号6008.exe

windows7-x64

1

表格8-1号6008.exe

windows10-2004-x64

1

Analysis

max time kernel
119s
max time network
120s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
02/08/2024, 18:12

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

147.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

147.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

2857381323.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

2857381323.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

XLSX202400000050346888uninst.exe

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

XLSX202400000050346888uninst.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

setupPDF.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

setupPDF.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

setupPDF2.exe

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

setupPDF2.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

setup登陆查询系统.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

setup登陆查询系统.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

新0_23.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

新0_23.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

表格8-1号6008.exe

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

表格8-1号6008.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

XLSX202400000050346888uninst.exe
Size

118KB
MD5

bb0cb787ee7ce1e386a723a4fcd16ee0
SHA1

6d9f76f2e8d5eb2a8aaf90200da462f19d4cea66
SHA256

5d961d6a56c20db3c3c7778fad6e93793555371c4250d39556dae323fb62fc16
SHA512

ecb93e940a9881fa9127b11f64055419040f5dc065dde70e74b7da09f68a540fea65fb77ad20337d601e589f70bcab64b6aecb0e785c83d09233e0b9a59cab54
SSDEEP

1536:0rE6ZxNQuZswgJ1MQmTx38M95s3c9YrYRv44gDwU3hFlQc7yz8w2sW4dUlVS4lo:Wuuu2Tx38M95s3cam4BRHGJUlVS4

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\XLSX202400000050346888uninst.exe
"C:\Users\Admin\AppData\Local\Temp\XLSX202400000050346888uninst.exe"
1⤵
PID:2356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\5.jpg

Filesize
409KB

MD5
7749cd4f8fdb13fc5d79f8ccc09d1532

SHA1
56193e36aa83464ba1831bde8eb274f6d3330380

SHA256
a5b9ee8809b953b757c942bc2e6eb98a2a0054bae6671469c3b662a85410a5a2

SHA512
7111e750590bb9f093ef78be7a671a89a9b2cc12ce5039be78a8e4b73010635c727fdc8b064fc64c8d89721e76cadedc695cf62d45677d7b9cf987378bba49c9

Download Submit
memory/2356-18-0x0000000001CD0000-0x0000000001D37000-memory.dmp

Filesize
412KB

Download

© 2018-2025

Terms | Privacy