Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

PePeCoin_qt.exe

windows7-x64

1

PePeCoin_qt.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    105s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/05/2023, 16:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PePeCoin_qt.exe

  • Size

    31.7MB

  • MD5

    bdfda2b3004ac68ad9f3dcd768a7dbcb

  • SHA1

    419f64a27ebd842b726673f7ff479437742a1c74

  • SHA256

    11898a1a53a0a3ee62055dd00c46a700dc87100dcd7527bfee75ebdd82c981bf

  • SHA512

    5fbc78294d008219f8633bb85adfc15c6f07e6456e8a77b5ac944656e7d25fe01aefa9e3803f0817810be04c839506b744f5986f2d7270044b924632efe89925

  • SSDEEP

    393216:UUJGB7oaYoDMTM6QorR5kAlOPmzuwCNgqwqKlOPQJsv6tWKFdu9CbyVzJ:VJGB7lYoITpQoFBvzuwCN6A/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 29 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SendNotifyMessage 2 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\PePeCoin_qt.exe
    "C:\Users\Admin\AppData\Local\Temp\PePeCoin_qt.exe"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:1784
  • C:\Windows\system32\wbem\WmiApSrv.exe
    C:\Windows\system32\wbem\WmiApSrv.exe
    1⤵
      PID:2092

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\blk00000.dat
      Filesize

      16.0MB

      MD5

      06b229e39fdf290d4fb62a2f573fb78d

      SHA1

      1a8a99824f08215003b55ac2d2e24e2052e08597

      SHA256

      0eb3801188803d2dfe6b78eac05650f83efb998bbebbba2ac9f9a1a0f9e6b023

      SHA512

      8f245b3ead981bbe099eb252b1095c90e2b799004260a01fb11d4bc41c45e3d1c4c2ab45bc7c19aa2ea1f44d5d381b4602ac86d56c88aecb6ebcb82c911afc6a

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\blk00000.dat
      Filesize

      16.0MB

      MD5

      06b229e39fdf290d4fb62a2f573fb78d

      SHA1

      1a8a99824f08215003b55ac2d2e24e2052e08597

      SHA256

      0eb3801188803d2dfe6b78eac05650f83efb998bbebbba2ac9f9a1a0f9e6b023

      SHA512

      8f245b3ead981bbe099eb252b1095c90e2b799004260a01fb11d4bc41c45e3d1c4c2ab45bc7c19aa2ea1f44d5d381b4602ac86d56c88aecb6ebcb82c911afc6a

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\blk00000.dat
      Filesize

      16.0MB

      MD5

      7062499799c39a8d1f86ed0c2389597b

      SHA1

      7f80316d8f02343373bb07c2bfac8a35b1c497e4

      SHA256

      fca319f65a9f24cfd11a085ac741e2f94eae71d9c406fb66f52df42863935ccf

      SHA512

      605ae79c4f71ebc7bad9cc6d741b54eac00b76323c28a7b2f1d7c942b42e467872bbc48304c1ee8d18993693f37a8182c3d377866730cc0e3911175da9e7d3db

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      b1ff6de809e8dccb316198acd492b9f8

      SHA1

      3f5b19710ff2718f7b8c4052bc1e04c89edbc410

      SHA256

      390e0128cb82e385f88ef5fa93d7ece40bf2fcd20b302a887231f33130d7384e

      SHA512

      e669b8a6b7c45b23df90b46bf4d834c1eb9260d824d74b015c80795a5519992f9eda27ba05dd158133adceb00a7548612753559febcce70658a4b907eab08b92

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      b1ff6de809e8dccb316198acd492b9f8

      SHA1

      3f5b19710ff2718f7b8c4052bc1e04c89edbc410

      SHA256

      390e0128cb82e385f88ef5fa93d7ece40bf2fcd20b302a887231f33130d7384e

      SHA512

      e669b8a6b7c45b23df90b46bf4d834c1eb9260d824d74b015c80795a5519992f9eda27ba05dd158133adceb00a7548612753559febcce70658a4b907eab08b92

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      4c40ad4b95e3a6d7f5dc8c7c41ce32d5

      SHA1

      20982c2ca1b01cedf12836275ad757d7979c327e

      SHA256

      9d8d222778953a151500be4972583a1834ddc1b963fbf986e2b91be5d2fb1a39

      SHA512

      0e40d4e7cacb7dfa3d71f6d3c49be4d42eb868b17b27b28408e4bf42b934171b24fc40218285e2582ec9efbbcb9cd950dcb48c4ef253776a09a9f10e2b734961

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      b42f4e6a99255233304ed8011274c3ce

      SHA1

      f427ee5eeae2a0417c9bf0b688ef17f87a36f4e4

      SHA256

      bc97ce9ad1793ce73d33eedff8639f30dec28083b37c80a47c9a18a44246788f

      SHA512

      7f014852749729e3e27bb859cedd08943e25e32042bc4b87f6437c611f3ea9e78aa63003ac221556af02125d06a3fee2b8f2234ce849322c9dc542ee2f177b51

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      849410b417a41520c119959a2f90ed1d

      SHA1

      91380e43a410330f53563d48d0aa7a7595098ecb

      SHA256

      fac16d12bee54ec5ec7f6dabc34f96e5d0d6d9efb836e2e6d479900478ab3c53

      SHA512

      2fc23fb9f353703f48c12fce1e04aaa7f82704a55d7ee806157bce6940c8033ac7ee5d1772236f350689546a1e200387d01d141736782bb9179b2408d6a6d009

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\blocks\rev00000.dat
      Filesize

      1024KB

      MD5

      b01c0cc872d7d47d9cd27d04117be5e6

      SHA1

      b5efeccbc1d2fc8d4cae4f2d81cd2de46befb7d8

      SHA256

      a95da3cec01f777a2d2234c7c67cf52180abd9e62faf047e7eb2f776287a7435

      SHA512

      8c4d38dbacb9e1b26f3a8fc83ccb1692479df24bb92c3ef56e4062e8b42a3b79fb0662ada6057c0fb61c07999283c1d4ec432e6f491771cd352d71c36dfb2dfa

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\chainstate\000002.dbtmp
      Filesize

      16B

      MD5

      206702161f94c5cd39fadd03f4014d98

      SHA1

      bd8bfc144fb5326d21bd1531523d9fb50e1b600a

      SHA256

      1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

      SHA512

      0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\chainstate\CURRENT
      Filesize

      16B

      MD5

      46295cac801e5d4857d09837238a6394

      SHA1

      44e0fa1b517dbf802b18faf0785eeea6ac51594b

      SHA256

      0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

      SHA512

      8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

      Download Submit

    • C:\Users\Admin\AppData\Roaming\PePeCoinCore\wallet.dat
      Filesize

      632KB

      MD5

      d05c1b133767a830cc3cc030fdd3b32a

      SHA1

      9e922fa2d0e4514102cbb29db362ce856e3a602c

      SHA256

      1db389eba77cce6c37562947551cdc4c6a483dbcb835a43562f9a856f7a05d2b

      SHA512

      362804883ea518cfb9daeee4aa239d34bc360aad8da8f923ad443509e942cbf4149424434877b3301f0f66e46569af869b7e39d5f30a7dd46ae41590df99eba0

      Download Submit

    • memory/1784-186-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-134-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-591-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-7615-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-13426-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-18500-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-23562-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-25856-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download

    • memory/1784-25865-0x0000000000B50000-0x0000000002B20000-memory.dmp

      Filesize

      31.8MB

      Download