Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

a040e016c2...8N.exe

windows7-x64

5

a040e016c2...8N.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    92s
  • max time network
    94s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/10/2024, 01:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a040e016c21363099e71482a05485f3f90ae6a242ea7d0a169a78bb6dc2ae1b8N.exe

  • Size

    236KB

  • MD5

    af57ab77cdf411283c50d8ee6403c3e0

  • SHA1

    bc241ff927007d7687842d2eb9a17b84e3ddd97a

  • SHA256

    a040e016c21363099e71482a05485f3f90ae6a242ea7d0a169a78bb6dc2ae1b8

  • SHA512

    84b0631ffb47ab55ed6db7a82213b2fc75df7540b40979a2eeeddfc542b114576cb748d961a10a449f1a2a154dcc2e6556c2233479f9673dda4641b368994cb9

  • SSDEEP

    3072:CJ0Bs3o8A4M3riN6MhGkgS3PL6pb9t16n5OkhBOPC/V/FnncroP9:2wDeM7iNEkgiOb31k1ECxJ/F

Score
5/10
discoveryupx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\a040e016c21363099e71482a05485f3f90ae6a242ea7d0a169a78bb6dc2ae1b8N.exe
    "C:\Users\Admin\AppData\Local\Temp\a040e016c21363099e71482a05485f3f90ae6a242ea7d0a169a78bb6dc2ae1b8N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\rifaien2-ni4UzxedlUaoIPmC.exe
    Filesize

    236KB

    MD5

    688196ed645818ccfe576173b7bfd17f

    SHA1

    b4f425bf07e27fa305ff22d39c7d785754493a43

    SHA256

    88a8e8ea87e4b258b32d3fa554a17ceb8dafae1d9c32411a2fead10df2128f8b

    SHA512

    e7d1c4c7807cbcfa33fa652ddbaea7318ebaaed2bac224560316d2c2752292ddf37d95ad4c6c0bce67625dfe1dfa5975157118859d4b0388f1622aa3d645d7a7

    Download Submit

  • memory/2224-0-0x0000000000400000-0x000000000043B000-memory.dmp

    Filesize

    236KB

    Download

  • memory/2224-1-0x0000000000400000-0x000000000043B000-memory.dmp

    Filesize

    236KB

    Download