Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

yyb4.sp.exe

windows7-x64

1

yyb4.sp.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    161s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/08/2023, 22:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    yyb4.sp.exe

  • Size

    35.2MB

  • MD5

    d7180fa10e17e5e24ada3d43d117a7ea

  • SHA1

    a3a3f1e8b701fae85521aa0af6719a216d13757c

  • SHA256

    5d76512b41eba12a0ede19c0f1393220b0d524ae9118e0ab766811dd91305abf

  • SHA512

    edc54a808b27e68236a6876c0954d6a66a619dc925557b55b572be3fd0c606b6392b8f336da121d2b3404392a0c5c748ba7808165dfb4749063a9b204b1311d6

  • SSDEEP

    786432:ynssgnq3EoG5z7tdoaqmGvMq/ygKrDQjx5NjoAnBNWs5an9JdsMizc:yncnq3E30VM7gKr3IBk

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 30 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\yyb4.sp.exe
    "C:\Users\Admin\AppData\Local\Temp\yyb4.sp.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4576-133-0x0000000000400000-0x0000000003016000-memory.dmp

    Filesize

    44.1MB

    Download

  • memory/4576-134-0x0000000010000000-0x0000000010196000-memory.dmp

    Filesize

    1.6MB

    Download

  • memory/4576-138-0x0000000076F12000-0x0000000076F13000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4576-139-0x0000000006110000-0x0000000006111000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4576-140-0x0000000006120000-0x0000000006121000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4576-141-0x0000000000400000-0x0000000003016000-memory.dmp

    Filesize

    44.1MB

    Download