Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

Release/Be...er.dll

windows7-x64

1

Release/Be...er.dll

windows10-2004-x64

1

Release/CeleryApp.exe

windows7-x64

1

Release/CeleryApp.exe

windows10-2004-x64

1

Release/CeleryIn.dll

windows7-x64

1

Release/CeleryIn.dll

windows10-2004-x64

1

Release/Ce...ct.exe

windows7-x64

1

Release/Ce...ct.exe

windows10-2004-x64

1

Release/Costura.dll

windows7-x64

1

Release/Costura.dll

windows10-2004-x64

1

Release/Dragablz.dll

windows7-x64

1

Release/Dragablz.dll

windows10-2004-x64

1

Release/Ma...rs.dll

windows7-x64

1

Release/Ma...rs.dll

windows10-2004-x64

1

Release/Ma...ns.dll

windows7-x64

1

Release/Ma...ns.dll

windows10-2004-x64

1

Release/Mi...re.dll

windows7-x64

1

Release/Mi...re.dll

windows10-2004-x64

1

Release/Mi...ms.dll

windows7-x64

1

Release/Mi...ms.dll

windows10-2004-x64

1

Release/Mi...pf.dll

windows7-x64

1

Release/Mi...pf.dll

windows10-2004-x64

1

Release/Mi...rs.dll

windows7-x64

1

Release/Mi...rs.dll

windows10-2004-x64

1

Release/Sy...ce.dll

windows7-x64

1

Release/Sy...ce.dll

windows10-2004-x64

1

Release/bi...x.html

windows7-x64

3

Release/bi...x.html

windows10-2004-x64

3

Release/bi...ain.js

windows7-x64

3

Release/bi...ain.js

windows10-2004-x64

3

Release/bi...tes.js

windows7-x64

3

Release/bi...tes.js

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    08/08/2024, 03:17 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Release/CeleryApp.exe

  • Size

    8.8MB

  • MD5

    74c366b46a85acac6c83e9671e64dda7

  • SHA1

    dc9a7b4cc7511b701401aa86e0106d3495e3a0fe

  • SHA256

    6a25cc6c05e54ca56e8b51d2b2bd8b9a17a96ecb1d1f6d4442d36378dc809ed1

  • SHA512

    e0df64a74c3c9e1c36f5957d346d961cc92741b1803e05d41454dde4371a0e9420f9e79163bed9fe2d8b588b9da6f2faaa08003ca50be37a6425a8320acd15cb

  • SSDEEP

    98304:wEgLIRfyC7egWJ3iJzdjf4fwraOWcD9XdMPABIw/t6KHDicVwzUs7:wEguhegD4fJOWs9XNBZ16M2cuU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Release\CeleryApp.exe
    "C:\Users\Admin\AppData\Local\Temp\Release\CeleryApp.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:756
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 756 -s 860
      2⤵
        PID:2520

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/756-0-0x000007FEF5993000-0x000007FEF5994000-memory.dmp

      Filesize

      4KB

      Download

    • memory/756-1-0x0000000000BC0000-0x0000000001486000-memory.dmp

      Filesize

      8.8MB

      Download

    • memory/756-2-0x000007FEF5990000-0x000007FEF637C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/756-3-0x0000000000830000-0x0000000000870000-memory.dmp

      Filesize

      256KB

      Download

    • memory/756-4-0x0000000002A20000-0x0000000002A70000-memory.dmp

      Filesize

      320KB

      Download

    • memory/756-5-0x000000001DC50000-0x000000001E56E000-memory.dmp

      Filesize

      9.1MB

      Download

    • memory/756-6-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-7-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-8-0x0000000000670000-0x000000000067E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/756-9-0x0000000002C20000-0x0000000002C94000-memory.dmp

      Filesize

      464KB

      Download

    • memory/756-10-0x000007FEF5993000-0x000007FEF5994000-memory.dmp

      Filesize

      4KB

      Download

    • memory/756-11-0x000007FEF5990000-0x000007FEF637C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/756-12-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-13-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.