Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    104s
  • max time network
    106s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/09/2024, 17:55

General

  • Target

    4a5a16bfaf0aa3bc248c24c9ef0aa910d5b77010fe27e2dadf5de13adc53b8bf.exe

  • Size

    63KB

  • MD5

    2afc26edd5f28b7e4888144f62eec598

  • SHA1

    ab3748f2b7aade43adf56ffedd7b66b26194f7fc

  • SHA256

    4a5a16bfaf0aa3bc248c24c9ef0aa910d5b77010fe27e2dadf5de13adc53b8bf

  • SHA512

    1c94aa8740d0cdb2a339ba23092c0ebaf96dbf1d7febc2a6724942fe384e56f7d95c9176e4a95a8c367e9effc359aea86a1d4b47c55550428b213a34f707ce85

  • SSDEEP

    384:I4Fz/xBrX9dec6P+Il7auPFmPFsWy49LDZ/oVW3pS53ISPYiQ5yhnfFMa:IE/xlGc6UudmPBDZ/oVW3pS5Vln

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\4a5a16bfaf0aa3bc248c24c9ef0aa910d5b77010fe27e2dadf5de13adc53b8bf.exe
    "C:\Users\Admin\AppData\Local\Temp\4a5a16bfaf0aa3bc248c24c9ef0aa910d5b77010fe27e2dadf5de13adc53b8bf.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:736

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/736-0-0x00000000005B0000-0x00000000005BB000-memory.dmp

    Filesize

    44KB