Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
93s -
max time network
95s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
11/01/2025, 06:48
Behavioral task
behavioral1
Sample
5333fed1ecff3d2db7ed40c174679e1840d8bc762dcf5223f5fab793dd57ec2d.exe
Resource
win7-20241010-en
General
-
Target
5333fed1ecff3d2db7ed40c174679e1840d8bc762dcf5223f5fab793dd57ec2d.exe
-
Size
236KB
-
MD5
99536d58d2b671ac7f348c2b085df51b
-
SHA1
5e177911ad78760ec6281ce03153657dc54c5aa8
-
SHA256
5333fed1ecff3d2db7ed40c174679e1840d8bc762dcf5223f5fab793dd57ec2d
-
SHA512
7667a78dce1f80f3c277105481fbe94c526103c1f123994ae5a9a4df4c7dcb959ffd3cf366c00190651d240ce72033ee79c55bc18d1b194301944391396de708
-
SSDEEP
3072:xJ0Bs3o8A4M3riN6MhGkgS3PL6pb9t16n5OkhBOPC/c/FnncroP9v:7wDeM7iNEkgiOb31k1EC6J/Fv
Malware Config
Signatures
-
resource yara_rule behavioral2/memory/2468-0-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral2/memory/2468-1-0x0000000000400000-0x000000000043B000-memory.dmp upx behavioral2/files/0x000b000000023bac-7.dat upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 5333fed1ecff3d2db7ed40c174679e1840d8bc762dcf5223f5fab793dd57ec2d.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
236KB
MD59334072471284e81cbbb0690d6d44847
SHA14d42b3223dc9fab8de3f09cc661aed3787fbafba
SHA256f257f0a6ee18440998468b43c410b3d1e0801a66d22494686713467a43704177
SHA5129e44cb450622d280b9640da9d363d10fe0b08d686f00224163d1951ba88fde92261c629bb5d689d4a79aa4b7d386c6f5a3270f26edd53c3efb5456a6811bd12e