Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

Kidux32.dll

windows7-x64

1

Kidux32.dll

windows10-2004-x64

1

Kidux64.dll

windows7-x64

1

Kidux64.dll

windows10-2004-x64

1

Qt5Core.exe

windows7-x64

1

Qt5Core.exe

windows10-2004-x64

1

YouTube Pr....0.exe

windows7-x64

8

YouTube Pr....0.exe

windows10-2004-x64

8

alocal.exe

windows7-x64

1

alocal.exe

windows10-2004-x64

1

drivefsext.exe

windows7-x64

1

drivefsext.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    106s
  • max time network
    139s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/09/2022, 00:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Qt5Core.exe

  • Size

    278KB

  • MD5

    8111ebde6b1fda66d48cdb4f719b71df

  • SHA1

    386bca5f2460a937bf38aa502370f3a64c9f5319

  • SHA256

    a67010ee45138a89f3df1f21996d76de0dda5c20d69f946cb9f4c45e3063d555

  • SHA512

    b7bb16b9131cb11a41d9068c3fc7d8a0970e6d42ceef3957ced5af25015a4f61fdf8dccdd966444b09845a129cbc8aeb276981f4664460d69d29d74ee9960d35

  • SSDEEP

    3072:ITBNjX4FnqiGU7LvAjc+H4HiwAeUhIsOZjTsN4017Y5bQ+TBNjX4NnqiGU7LvAjX:k+rq1cxb+e

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Qt5Core.exe
    "C:\Users\Admin\AppData\Local\Temp\Qt5Core.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/220-132-0x0000000000850000-0x000000000089C000-memory.dmp

    Filesize

    304KB

    Download

  • memory/220-133-0x00000000053F0000-0x000000000548C000-memory.dmp

    Filesize

    624KB

    Download

  • memory/220-134-0x0000000005A40000-0x0000000005FE4000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/220-135-0x000000000534C000-0x000000000534F000-memory.dmp

    Filesize

    12KB

    Download

  • memory/220-136-0x0000000005530000-0x00000000055C2000-memory.dmp

    Filesize

    584KB

    Download

  • memory/220-137-0x00000000054D0000-0x00000000054DA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/220-138-0x0000000005720000-0x0000000005776000-memory.dmp

    Filesize

    344KB

    Download

  • memory/220-139-0x000000000E110000-0x000000000E8B6000-memory.dmp

    Filesize

    7.6MB

    Download

  • memory/220-140-0x000000000534C000-0x000000000534F000-memory.dmp

    Filesize

    12KB

    Download