Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
84bec7aa3d679064295ae98cd46401dc432f94a75ddbe6fd3f8e7d83d8e38ee6N.exe
Resource
win7-20240903-en
General
-
Target
84bec7aa3d679064295ae98cd46401dc432f94a75ddbe6fd3f8e7d83d8e38ee6N
-
Size
725KB
-
MD5
e1a2bad5b28ad063d0eda72cd0980dc0
-
SHA1
3c1a4176fac2e01b75534ce59af43faaa05dec49
-
SHA256
84bec7aa3d679064295ae98cd46401dc432f94a75ddbe6fd3f8e7d83d8e38ee6
-
SHA512
f226993e4eddc2792d481a28c5027635cb9fc2cc0886be949282208b9138669e1098a8d80169f5aabe92ff237270ccace43fe3df43460729664a335129938af4
-
SSDEEP
12288:SLv10juMhjLF4sj6d07gKabaX3v7YX6B1qCLGQvc9Zn9ociP:q1/MdLiJ0MKFHDYKSZn9q
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 84bec7aa3d679064295ae98cd46401dc432f94a75ddbe6fd3f8e7d83d8e38ee6N
Files
-
84bec7aa3d679064295ae98cd46401dc432f94a75ddbe6fd3f8e7d83d8e38ee6N.exe windows:4 windows x86 arch:x86
437b2c10026a5113942bd43de6b413fa
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
SetEntriesInAccessListW
ntdll
NtCreateProcess
user32
GetDoubleClickTime
kernel32
GetLastError
Sections
.text Size: 717KB - Virtual size: 720KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE