Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
148s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
04/10/2024, 07:08
General
-
Target
5dd65f4843efe5eab9285c21958a118920a57a5fa993c06e57d4ba88d222ea2c.exe
-
Size
10.0MB
-
MD5
5ceaf3e253aa3de13933de0e15f82e7d
-
SHA1
aca6ec62477b0bf77905d2a45978853ba731f051
-
SHA256
5dd65f4843efe5eab9285c21958a118920a57a5fa993c06e57d4ba88d222ea2c
-
SHA512
74fe7307bf6fcfa339565699bcb5c5a5e5fc95b39749a510f92f2e5b621ddfd5b3d6c1a7ac0187af3f55e379b5df77ff1fd99f2818728d7509a3f7c255be499b
-
SSDEEP
196608:n4NS0NTxePePDdh0iCULKkOa8z1s6NXuAktmBlU4I4:nmRrDjtLKkOa8ps6puAktIz
Malware Config
Signatures
-
Downloads MZ/PE file
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\5dd65f4843efe5eab9285c21958a118920a57a5fa993c06e57d4ba88d222ea2c.exe"C:\Users\Admin\AppData\Local\Temp\5dd65f4843efe5eab9285c21958a118920a57a5fa993c06e57d4ba88d222ea2c.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
2KB
MD54d6d329f856a64fb44244f0003cda503
SHA1f51420f88c63e069ed851501e4f4ec91a035ff88
SHA25612c2f3401c469216c11371373e90f48f1b98c59da5bd64a2817d5550fc25d0de
SHA51227eef230bee5610717b9cab2feadfc21cce12b3e721e2d14e23972b3336573c72d51d5da35586fd2aa84b28538b86f7cd8b04751319105389aec59afdaca6312
-
Filesize
6KB
MD54a58519af668eba19372b9601f8a2d41
SHA1efa8797ef346460d9c32d0241e1d558ea3ad3998
SHA256201714e4d32167e623398d601933ca966ebf2b63992fb460eb76a38370a1d38d
SHA512f4ee2f1126218108e803fc5e312895488d5489682135619eef026a163fdd7bb1ee75ccc6c5d80dcc4735fe2f95e9d3a1910e3649aec8ae9944cf807746c1b5c9
-
Filesize
38B
MD5c4f29d62d95a5d31ff6c8e039d27317d
SHA1ab45663f6e8ba6e737a8ad445bde1cec3507429f
SHA25656717476fb4c52e416ff3b0633a206e82ecc3cddfe692f2641e8696a7d4a4737
SHA5121cbcc07e285fbde78fb4cfcbdb795e9bd076cc5901226ad109e43c5ad790928fa275da0200321205d85827f32f6daa99b77fb84295c0a97383f005898ea8b9a5