Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

Built.exe

windows7-x64

7

Built.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/01/2025, 23:22 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Built.exe

  • Size

    20.0MB

  • MD5

    d7aeb39e14654264056a82eb3cb4fafd

  • SHA1

    4a034431382d6ffba7b667991e00a0e19cc014d8

  • SHA256

    92f027a0b248d0af627654e264f6b57755965e71f84da6cbd0d98ea98212cac7

  • SHA512

    02a085f43ad02e38084ddccd37bb19c04653ff4687cb12193f8685e49c50c50ba9d90a3138fbb089192d0f9123d1b9d232cbde23edb57822d16544a26468fec6

  • SSDEEP

    196608:y2DFSukdzVwfI9jUCBB7m+mKOY7rXrZuOn0ooDmhfvsbnTNWH:jZoNaIHL7HmBYXrbxoaUNI

Score
7/10
upx

Malware Config

Signatures

  • Loads dropped DLL 7 IoCs
  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Built.exe
    "C:\Users\Admin\AppData\Local\Temp\Built.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Users\Admin\AppData\Local\Temp\Built.exe
      "C:\Users\Admin\AppData\Local\Temp\Built.exe"
      2⤵
      • Loads dropped DLL
      PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\api-ms-win-core-file-l1-2-0.dll
    Filesize

    13KB

    MD5

    6b280015cf873517051ccbda728dea4b

    SHA1

    c83f9bc0e27eb1969559d6aeaa268c99a5a4dde1

    SHA256

    f2a0d0fc3d24e72f3cc46111d7166ab8a4511674b73617d2019f235c61b30654

    SHA512

    fcb108b3a95d13059434415c3d054669b4741c85f4a21dc60f69af870a306aa6c2726b03e746f9ad5ff916cfc23a1bc1ed541e635b4720e430b334e921e568e1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\api-ms-win-core-file-l2-1-0.dll
    Filesize

    13KB

    MD5

    37fcc989b5ae55d0d18ee69edf57f6c6

    SHA1

    c4b2cdc1aee7137fbe4993b03859e9fb45fc3e14

    SHA256

    4047ec069444b0b466c4b375bd55aa1e1b6c177bda61eca391969b3d0d07f534

    SHA512

    bcbf7c4bd709ab1b7fbac483bf2b002abaac93e7e74ec465c31ab9ece6cd7874ffeced5a998302514e3f0cf15e571c09d7197d146f6fe490dbf429ea2a964d4c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\api-ms-win-core-localization-l1-2-0.dll
    Filesize

    15KB

    MD5

    d48de46dc141d9cad89cd97a9ac326da

    SHA1

    6ae6491924a7ea716f907490cf1851da014ee3c5

    SHA256

    aaacc72a5e85ceb15181b4604683543f81b37dd1d5215d647ff3fb464935f890

    SHA512

    6bcd7f62c293f8a3aea9937c4520851babd8ed796b138860e3e3aac7bb95715b5987485f8ee8255209bbb704e73e833d4cddf1c8e57bd2a39448dc292bb4f6ce

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\api-ms-win-core-processthreads-l1-1-1.dll
    Filesize

    13KB

    MD5

    d23eb2dbfb3094b4bd37cb304f6c2a8d

    SHA1

    9f2ed84b2a8d46bd8ca0704917e95a44c3426ef3

    SHA256

    af4d0083bac90404962e846a91385fc10b62dc739d1a763ec11950636a62a1f3

    SHA512

    d1cfbcdb9f97958593c561c3e7bdf6da7fe1ab586592c74bff7dd5cf1296fb2f5f7139ebeebe55bf4ae62c4043819955fc6764a6e724e00e9bbdb77d52d8f7b6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\api-ms-win-core-timezone-l1-1-0.dll
    Filesize

    13KB

    MD5

    a9b11e4a24f3dfd567f79e1fca5375d2

    SHA1

    90a76ed33255c1db551fe95debbefdf07d3617a3

    SHA256

    df91a750aad544f3c1048d2b397890aa91282e115652ac833639196f8e945a3d

    SHA512

    2fc0163d74fb121d4d426b99ba70c65a1f847c9b867fad0f86e9caa7b295e101958b2bf05a8b2498fbe0027cad71ea8c09ece3e5d2c4d707936e42c21f840236

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\python313.dll
    Filesize

    1.8MB

    MD5

    9a3d3ae5745a79d276b05a85aea02549

    SHA1

    a5e60cac2ca606df4f7646d052a9c0ea813e7636

    SHA256

    09693bab682495b01de8a24c435ca5900e11d2d0f4f0807dae278b3a94770889

    SHA512

    46840b820ee3c0fa511596124eb364da993ec7ae1670843a15afd40ac63f2c61846434be84d191bd53f7f5f4e17fad549795822bb2b9c792ac22a1c26e5adf69

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI20722\ucrtbase.dll
    Filesize

    987KB

    MD5

    907116582b20dab2c7952d283b2859e0

    SHA1

    92ed93d90e3dbed0bede26684618cdf40824f3f7

    SHA256

    aaada1f31f5862c7f7ebd68b15a4b854465d9e0c525228632ab6c85c2f321acb

    SHA512

    eb468b1537c299ddb486d6b8ebf4edf5821458bd012400b995c4c2d351aee67e5e292f5828baef07cc52a8c57940cb0d7cda7a99ef83e21978818fd28a7e4bc4

    Download Submit

  • memory/2752-74-0x000007FEF5A50000-0x000007FEF60B5000-memory.dmp

    Filesize

    6.4MB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.