Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

8ac85bfceb...7N.exe

windows7-x64

5

8ac85bfceb...7N.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    92s
  • max time network
    93s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/10/2024, 03:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8ac85bfceb7e883132326959e5617e3a9c3e9383082a4c8f91db6372dcf98b67N.exe

  • Size

    236KB

  • MD5

    ae038c98844ec5d62053cfa5cda68a10

  • SHA1

    5fb6e61d5b2a2c38f123ff6d949895685a2050c6

  • SHA256

    8ac85bfceb7e883132326959e5617e3a9c3e9383082a4c8f91db6372dcf98b67

  • SHA512

    39c3e103d3642777298296e73452244376a30314bfc05730b0cf9aabe7ca2082456af67d53bc2967ab7bfd5f36367019db87b75ecd1290d02d9d0b2fcf7d2b48

  • SSDEEP

    3072:oJ0Bs3o8A4M3riN6MhGkgS3PL6pb9t16n5OkhBOPC/V0/FnncroP9:swDeM7iNEkgiOb31k1EC0J/F

Score
5/10
discoveryupx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\8ac85bfceb7e883132326959e5617e3a9c3e9383082a4c8f91db6372dcf98b67N.exe
    "C:\Users\Admin\AppData\Local\Temp\8ac85bfceb7e883132326959e5617e3a9c3e9383082a4c8f91db6372dcf98b67N.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2248

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\rifaien2-CS33vxquhkdnMIBw.exe
    Filesize

    236KB

    MD5

    14a055abfd1433a58811056a7dfef7ab

    SHA1

    ecc9ab1f9be2328eed9c224be5db99d3eaa4be65

    SHA256

    e314ba35b156b27aef1d5a3dfa7fbf9ef0b03324fe2b48bb62d50f137ba45685

    SHA512

    a1831da4b6cb7f477b2ab36ebd64e0909a2a41cf8103a0b2ca1f0f2f7722056e5fb9dbdc3cd4a76caebe3500af477cd582888ee5bcab9b99748a7dae2e0d2a67

    Download Submit

  • memory/2248-0-0x0000000000400000-0x000000000043B000-memory.dmp

    Filesize

    236KB

    Download

  • memory/2248-1-0x0000000000400000-0x000000000043B000-memory.dmp

    Filesize

    236KB

    Download