Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

b40248a9bb...d3.exe

windows7-x64

10

b40248a9bb...d3.exe

windows10-1703-x64

10

b40248a9bb...d3.exe

windows10-2004-x64

10

b40248a9bb...d3.exe

windows11-21h2-x64

10

Analysis

  • max time kernel
    136s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/08/2024, 09:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b40248a9bb1a34a25a6f39832ce2c0bb733e3aa301c275ae6b1cae1563f892d3.exe

  • Size

    2.6MB

  • MD5

    d30cc6e20f467d100ca3c451544e974f

  • SHA1

    281eb64651425fbb4b9afb34406f61cbedc5495d

  • SHA256

    b40248a9bb1a34a25a6f39832ce2c0bb733e3aa301c275ae6b1cae1563f892d3

  • SHA512

    3495f893eabc6e04d1ff42b1f2d040e2e072b581afd5b58c650edfc96cd04c73429f88cf4fccb3eee779bb935d0ecfe0f32dead4ac0d24e7979999541308ac5b

  • SSDEEP

    49152:jVR2fXorDC2Bfg3ArfajUm8U/NDApPlrJT0k5FEo/oDIc3kQpYBXz0z46Spw6rs6:qCEtmR02cUfR9

Score
10/10
stealer

Malware Config

Signatures

  • DeerStealer 6 IoCs

    Detects DeerStealer malware - JaffaCakes118.

    stealer

Processes

  • C:\Users\Admin\AppData\Local\Temp\b40248a9bb1a34a25a6f39832ce2c0bb733e3aa301c275ae6b1cae1563f892d3.exe
    "C:\Users\Admin\AppData\Local\Temp\b40248a9bb1a34a25a6f39832ce2c0bb733e3aa301c275ae6b1cae1563f892d3.exe"
    1⤵
      PID:3272

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3272-0-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-6-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-8-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-11-0x00007FFCD4E0D000-0x00007FFCD4E0E000-memory.dmp

      Filesize

      4KB

      Download

    • memory/3272-13-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-15-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-19-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-20-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download

    • memory/3272-26-0x00007FF7D3960000-0x00007FF7D3C6B000-memory.dmp

      Filesize

      3.0MB

      Download