Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
42s -
max time network
46s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
27/11/2022, 06:29
Static task
static1
Behavioral task
behavioral1
Sample
'Xiaotao/20141123/ȡVip_11.7.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
'Xiaotao/20141123/ȡVip_11.7.exe
Resource
win10v2004-20221111-en
Behavioral task
behavioral3
Sample
'Xiaotao/ȡ_עϵͳ.exe
Resource
win7-20221111-en
Behavioral task
behavioral4
Sample
'Xiaotao/ȡ_עϵͳ.exe
Resource
win10v2004-20220812-en
Behavioral task
behavioral5
Sample
'Xiaotao/ȸʹ˵.chm
Resource
win7-20220812-en
Behavioral task
behavioral6
Sample
'Xiaotao/ȸʹ˵.chm
Resource
win10v2004-20221111-en
General
-
Target
'Xiaotao/20141123/ȡVip_11.7.exe
-
Size
5.3MB
-
MD5
8d01f381bc713105c84657e659614810
-
SHA1
b5186ac9611be2dfec4848060c8ab48bca5b3dd2
-
SHA256
2cad219d11a006d33fa22257f5e09243199e46c161ae969e6dda37370f1c5cec
-
SHA512
deb5ace2ea190cc49d4692a8b42561ef4cf1e0911959d7a6488d9ac0ad5e18adf8097823bb6a1ce772297e46f3e73d2f28cbf864523837ab5afa41001fb5afd0
-
SSDEEP
98304:X+f0ZFMI+toG0AMzcDqTDnDcdAPHJ+YWrSFMKVqTCfx9+1qyL41DEl:X5cdavWr2VoCfx9+syLf
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 5 IoCs
pid Process 1976 ȡVip_11.7.exe 1976 ȡVip_11.7.exe 1976 ȡVip_11.7.exe 1976 ȡVip_11.7.exe 1976 ȡVip_11.7.exe