Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

Release/Be...er.dll

windows7-x64

1

Release/Be...er.dll

windows10-2004-x64

1

Release/CeleryApp.exe

windows7-x64

1

Release/CeleryApp.exe

windows10-2004-x64

1

Release/CeleryIn.dll

windows7-x64

1

Release/CeleryIn.dll

windows10-2004-x64

1

Release/Ce...ct.exe

windows7-x64

1

Release/Ce...ct.exe

windows10-2004-x64

1

Release/Costura.dll

windows7-x64

1

Release/Costura.dll

windows10-2004-x64

1

Release/Dragablz.dll

windows7-x64

1

Release/Dragablz.dll

windows10-2004-x64

1

Release/Ma...rs.dll

windows7-x64

1

Release/Ma...rs.dll

windows10-2004-x64

1

Release/Ma...ns.dll

windows7-x64

1

Release/Ma...ns.dll

windows10-2004-x64

1

Release/Mi...re.dll

windows7-x64

1

Release/Mi...re.dll

windows10-2004-x64

1

Release/Mi...ms.dll

windows7-x64

1

Release/Mi...ms.dll

windows10-2004-x64

1

Release/Mi...pf.dll

windows7-x64

1

Release/Mi...pf.dll

windows10-2004-x64

1

Release/Mi...rs.dll

windows7-x64

1

Release/Mi...rs.dll

windows10-2004-x64

1

Release/Sy...ce.dll

windows7-x64

1

Release/Sy...ce.dll

windows10-2004-x64

1

Release/bi...x.html

windows7-x64

3

Release/bi...x.html

windows10-2004-x64

3

Release/bi...ain.js

windows7-x64

3

Release/bi...ain.js

windows10-2004-x64

3

Release/bi...tes.js

windows7-x64

3

Release/bi...tes.js

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    08/08/2024, 03:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Release/CeleryApp.exe

  • Size

    8.8MB

  • MD5

    74c366b46a85acac6c83e9671e64dda7

  • SHA1

    dc9a7b4cc7511b701401aa86e0106d3495e3a0fe

  • SHA256

    6a25cc6c05e54ca56e8b51d2b2bd8b9a17a96ecb1d1f6d4442d36378dc809ed1

  • SHA512

    e0df64a74c3c9e1c36f5957d346d961cc92741b1803e05d41454dde4371a0e9420f9e79163bed9fe2d8b588b9da6f2faaa08003ca50be37a6425a8320acd15cb

  • SSDEEP

    98304:wEgLIRfyC7egWJ3iJzdjf4fwraOWcD9XdMPABIw/t6KHDicVwzUs7:wEguhegD4fJOWs9XNBZ16M2cuU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Release\CeleryApp.exe
    "C:\Users\Admin\AppData\Local\Temp\Release\CeleryApp.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:756
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 756 -s 860
      2⤵
        PID:2520

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/756-0-0x000007FEF5993000-0x000007FEF5994000-memory.dmp

      Filesize

      4KB

      Download

    • memory/756-1-0x0000000000BC0000-0x0000000001486000-memory.dmp

      Filesize

      8.8MB

      Download

    • memory/756-2-0x000007FEF5990000-0x000007FEF637C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/756-3-0x0000000000830000-0x0000000000870000-memory.dmp

      Filesize

      256KB

      Download

    • memory/756-4-0x0000000002A20000-0x0000000002A70000-memory.dmp

      Filesize

      320KB

      Download

    • memory/756-5-0x000000001DC50000-0x000000001E56E000-memory.dmp

      Filesize

      9.1MB

      Download

    • memory/756-6-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-7-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-8-0x0000000000670000-0x000000000067E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/756-9-0x0000000002C20000-0x0000000002C94000-memory.dmp

      Filesize

      464KB

      Download

    • memory/756-10-0x000007FEF5993000-0x000007FEF5994000-memory.dmp

      Filesize

      4KB

      Download

    • memory/756-11-0x000007FEF5990000-0x000007FEF637C000-memory.dmp

      Filesize

      9.9MB

      Download

    • memory/756-12-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download

    • memory/756-13-0x0000000000670000-0x000000000067A000-memory.dmp

      Filesize

      40KB

      Download