Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
17s -
max time network
18s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
25/08/2024, 21:42
General
-
Target
7a04118012045becdd097be62c145e00N.exe
-
Size
65KB
-
MD5
7a04118012045becdd097be62c145e00
-
SHA1
51bfbdfb5b158492a546a813e9611107d7bad7f6
-
SHA256
7f9200d64a0be596d0c01b1853ff6ef6d3d0799286265a1b95e2e61de611a15c
-
SHA512
5a2a0326aaffbc77606898e9979fb1c96a47762359e74651407eecf4a51e51eec05ea48e4c979815fda16e0a1c11e058691ae800809e90ac949ac7771b75a0ed
-
SSDEEP
768:ErzHIr42KUtWafMjFDWkCO05EsCC/s3NhfAoiDCIElPbAX2n0fjr:Er9ZaidWVOEE3NxweIElDAmnqjr
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
-
Loads dropped DLL 1 IoCs
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\7a04118012045becdd097be62c145e00N.exe"C:\Users\Admin\AppData\Local\Temp\7a04118012045becdd097be62c145e00N.exe"1⤵
- Loads dropped DLL
- Drops file in System32 directory
-
C:\Windows\SysWOW64\rmass.exe"C:\Windows\SysWOW64\rmass.exe"2⤵
- Executes dropped EXE
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
62KB
MD577a4c21fcb8f862e4fe0d8e5dc856e6b
SHA17472cf691767f0988fa485079a0485aaf49d684d
SHA25680dd66cc00249029f4743607aef8d1c2fefb46497dc4a1d3e6e330c58a4debe8
SHA512a3a1c8412b04409f1ba864e13b6559ad3c9299b6c96e42b61252e0d7400b21f52422ac13537a70e075ca9bd3b60a550fc8b540d7a83e05e2507812b6581012de
-
Filesize
72KB
-
Filesize
12KB