Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
12s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
06/08/2024, 18:22
General
-
Target
main.exe
-
Size
30.7MB
-
MD5
be71d00e9d0f2902f25cb2fa94c3917a
-
SHA1
b9338661dfa05312e5329479f8e1a9b5c0e942f3
-
SHA256
d77ad43b474dd776144744546d3f85882b39794e7834448657b3de2a0957eb50
-
SHA512
2f484090f29435d7a4c30863d2ee578b42040b348f97189c2af128e675843dc4803b9c955f1ca140e69b55477756da1f4142bb78f7bc7902d2d5d6f16ff46ad0
-
SSDEEP
786432:8sHi2fmtUFJWs97HWE5dvQN/xNObO+CEA0:1fIUW0D52SyzEA
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
-
Loads dropped DLL 2 IoCs
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\main.exe"C:\Users\Admin\AppData\Local\Temp\main.exe"1⤵
- Loads dropped DLL
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\onefile_2064_133674421877070000\main.exeC:\Users\Admin\AppData\Local\Temp\main.exe2⤵
- Executes dropped EXE
- Loads dropped DLL
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
6.6MB
MD5d521654d889666a0bc753320f071ef60
SHA15fd9b90c5d0527e53c199f94bad540c1e0985db6
SHA25621700f0bad5769a1b61ea408dc0a140ffd0a356a774c6eb0cc70e574b929d2e2
SHA5127a726835423a36de80fb29ef65dfe7150bd1567cac6f3569e24d9fe091496c807556d0150456429a3d1a6fd2ed0b8ae3128ea3b8674c97f42ce7c897719d2cd3