Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85N.exe
Resource
win10v2004-20240802-en
General
-
Target
3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85N
-
Size
29KB
-
MD5
1076cbd36498e5bd225b1af07b2903f0
-
SHA1
dab02c5c453cb5c80219fbf8959368f44e1e6169
-
SHA256
3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85
-
SHA512
72fce885143edbf9b02d164f3803f81df9c32db85b5d5c0c12d22fd378e83734406b36c8741409362b92a0da2897ce80bc4f2f181f88c4011aa1fd45e9aa11e5
-
SSDEEP
768:AEwHupU99d2JE0jNJJ83+8zzqgTdVY9/Y:AEwVs+0jNDY1qi/qQ
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85N
Files
-
3344dce5f77ad9e9ada567f85e87f557ea9b101af48d92050b46eedf2b33ee85N.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 32KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 512B - Virtual size: 511B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE