Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

Yandex.exe

windows7-x64

8

Yandex.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    32s
  • max time network
    67s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    01/08/2023, 16:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Yandex.exe

  • Size

    4.2MB

  • MD5

    9c1f089e63a7795e61600713330783b3

  • SHA1

    8ec4c99d5e0e487ef23d3a130f99f66ec6869557

  • SHA256

    e147eabe55bc2f544641dd78f3fe2ecf4a8227c4e0e5c8bf1c5103f95417ebca

  • SHA512

    3a9b7e372d8b5b128054d1ff4841296bebd73a851f0c8b77da5a4d39ecd8936041dbf3d58b238f63aa2ea7e0939b7ad64e7bfff90412297be133b958bc244f0b

  • SSDEEP

    98304:T5wxWzZowQos6myn7WZPUsVigOKdzOJDb4v+:VSWFoCQPUV8wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\Yandex.exe
    "C:\Users\Admin\AppData\Local\Temp\Yandex.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:1576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    313cfbd75761d515780c60e28a3c5e6b

    SHA1

    c41fae66341739b5704df879330123e7838e82bf

    SHA256

    e0b6d85ea46bc26a1d36ce6b3119a4b6703cae2af56ed1a4b7f92395a06f53bd

    SHA512

    8d4601f7ba8a15843f9e84a5ce370f633341d347e4c43cf6884589a36f84824991eeaeafe5b300f32bb72e7a20e102afc85e2f5d85a8f2f381a1dd5616b47141

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    545ed2b3c80bbfb9990015bd23f933da

    SHA1

    59e7690932e88899aa4cb3f4b5631def6f2cde07

    SHA256

    ca8c94323fdc399c94d174e54ed9979ca98d3c3874fb89d2531993ac615c5a11

    SHA512

    9dac68e545b68f4f6a9897694cd8744446e653776c3c64fc43eb12f560232c355b9223464cb5ed685a2265888a0d7d12feed8a3f51a759cb715a0f4b7f8df0ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    ea035b3bb6d31fbc43d968cb9fe0c2a6

    SHA1

    eb02ce1f4ee58334322e0caa6526b1062b35fb05

    SHA256

    16dd19028a70f22c2752e9d776c75e6cc99c0255e032d98189c13e77ef864a66

    SHA512

    37a62528913719c29e751da5268db1b1c13430b90835e21c89b889a094150663297ece1bfd0670fd974b55ae5606e2376c8c981ae72e60e93221c79f436fa687

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb7E44.tmp
    Filesize

    134.7MB

    MD5

    ebfd481152d7831df783e7f2ea744159

    SHA1

    3bcbf1ebf900e6e8167eb441339f21425815019b

    SHA256

    1e96e7d0ec0ad269874e5ec728e6e20e028f3fad9e847d9d4923f54a6e36bf76

    SHA512

    267059849f5e81571f458a11332893b4581c1f60fa68fe73402b7e272f4abb096c1583d5ecc35b8b34e4fd412cb0818bea29c1a650099770dde9cb69fe87dbd2

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb7E44.tmp
    Filesize

    134.7MB

    MD5

    ebfd481152d7831df783e7f2ea744159

    SHA1

    3bcbf1ebf900e6e8167eb441339f21425815019b

    SHA256

    1e96e7d0ec0ad269874e5ec728e6e20e028f3fad9e847d9d4923f54a6e36bf76

    SHA512

    267059849f5e81571f458a11332893b4581c1f60fa68fe73402b7e272f4abb096c1583d5ecc35b8b34e4fd412cb0818bea29c1a650099770dde9cb69fe87dbd2

    Download Submit