Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

appFile_debump.exe

windows7-x64

10

appFile_debump.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    appFile_debump.exe.v

  • Size

    37.5MB

  • MD5

    6c3b270516a2731b1432f04cdefbb285

  • SHA1

    454081d69cf999c960cd03ebba0e38660738b8c5

  • SHA256

    9373f8ad1f33c0286734265cb5e60e69627fb5fd8f2220c655e6afa2d6ebda06

  • SHA512

    81ac6b5063d6927c01106b157e87f1f665c36bfc5dc8d24d1d8dc977d5d8918d07d3e9ed962d3b476f33be452c4d1cd68719f0ee35e712805ef141490a73cd3a

  • SSDEEP

    393216:ueXoa1bbXgKzn6vZrBoCMHUqbvkH/igbqmA8MLdculzFTi6AcsdNidnGF3rB:54CbwKzcHoDcH7qm6bTixca0ArB

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • appFile_debump.exe.v
    .exe windows:5 windows x86 arch:x86

    be41bf7b8cc010b614bd36bbca606973


    Headers

    Imports

    Sections

  • $TEMP/Allocation
  • $TEMP/Alter
  • $TEMP/Anniversary
  • $TEMP/Artistic
  • $TEMP/Cam
  • $TEMP/Cardiff
  • $TEMP/Caring
  • $TEMP/Carolina
  • $TEMP/Cite
  • $TEMP/Conspiracy
  • $TEMP/Counseling
  • $TEMP/Delegation
  • $TEMP/Estates
  • $TEMP/Family
  • $TEMP/Gov
  • $TEMP/Hostels
  • $TEMP/Integral
  • $TEMP/Marina
  • $TEMP/Messaging
  • $TEMP/Receive
  • $TEMP/Refurbished
  • $TEMP/Ri
  • $TEMP/Safely
    .ps1
  • $TEMP/Showcase
  • $TEMP/Threshold
  • $TEMP/Tops
  • $TEMP/Weeks
  • $TEMP/Yemen