Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

4ca7db1290...15.exe

windows7-x64

6

4ca7db1290...15.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/12/2024, 09:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ca7db129091a1a0a8c7babdc0851cd1f56a0afce09db54776a5862a89daae15.exe

  • Size

    161KB

  • MD5

    85e4320221408f8475e1337d3d4df3ac

  • SHA1

    702da4350473dc5a3e7c6d1f0c7899fce0ffeb42

  • SHA256

    4ca7db129091a1a0a8c7babdc0851cd1f56a0afce09db54776a5862a89daae15

  • SHA512

    c7fac650d78662d518d8a5d2e57131f82805c766256b71e55fd9bec2bfaf607abea80ac4c08630f23e31df247ef28b20f5bad77915d76eb5506f3351666fcb00

  • SSDEEP

    3072:nd3SoRYw/VXW80KeQoBWIJ0xKAG50NlQvh+5v4Ty2b1Nm:nZSo75WCvoBL/AGF0yb1N

Score
6/10
discovery

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\4ca7db129091a1a0a8c7babdc0851cd1f56a0afce09db54776a5862a89daae15.exe
    "C:\Users\Admin\AppData\Local\Temp\4ca7db129091a1a0a8c7babdc0851cd1f56a0afce09db54776a5862a89daae15.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads