Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

ad0342ea5c...42.exe

windows7-x64

8

ad0342ea5c...42.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    141s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/08/2023, 16:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ad0342ea5cd3640209c3674f81693a17b095fd1342966e50ec4d1a74be5c1642.exe

  • Size

    4.5MB

  • MD5

    88465d0f1ef03b5dbc96da6e5c44e42e

  • SHA1

    deae1326ef33d859da771801564e4e63cdbf497a

  • SHA256

    ad0342ea5cd3640209c3674f81693a17b095fd1342966e50ec4d1a74be5c1642

  • SHA512

    b6d70611b6643f8455c6330510137284ffa00be68ab6ddcd8bc3f52acc226ca8f0d2f599cc9d3f512b435a706b560ef7de0cc81dbec025fe4ab28dc1d5f24fff

  • SSDEEP

    98304:ZOLHzIDtxDSK2Qi26im50OORKdzOJDb4v+:qym50OlwN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ad0342ea5cd3640209c3674f81693a17b095fd1342966e50ec4d1a74be5c1642.exe
    "C:\Users\Admin\AppData\Local\Temp\ad0342ea5cd3640209c3674f81693a17b095fd1342966e50ec4d1a74be5c1642.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3328

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    314445ccbb835df43b1919cd9172d6bd

    SHA1

    244fd2f7bfe33102536fc51c37ebb439cdbe4e98

    SHA256

    540eb6df6bbf3ba214dde3d0bb13f90c174705b36f2f7c5a02076ba13630a68c

    SHA512

    007a66fe3b0d19496450cc608984a37e3f00289c7eac6a212e944698ef4f09c342ad38b20b496eae569695cd82cbc853839cd701abc551c9f99f77d2244cfb80

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    56a048a108f24774113804ad21d7c099

    SHA1

    545f97888c8936d3b2a1063e8770c6f1a36842dc

    SHA256

    319ae49f709a002b2a13d7f2712bf4e3c15d831bbfc97d0a3021595bd2ebdc8a

    SHA512

    a9ace63aadae4c71b7a1acbc346628760fce2a9ddadcba0a6e0adfb68bf658c40a9d1a1560f55823d352c0e8fb032c7b6e6d77c5e0ba7181a04f6cc0d820e114

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    bf427c4f601f9d1fed807e5bfdad2c83

    SHA1

    ed0c71cdc71e45c7a15d52ef097d1cc4c8e06104

    SHA256

    e9238a3b25f6fab01fed838955ad1aa964bdd3f28b87ce12d99c2f74ce61b26b

    SHA512

    53911a3f5c044d78e1dc828e5592aac4567d3632b2256a0d431ac1410b385a6c5c696a29656f84d02c4fefc65d9e6cfd8b29df874054fdaeea4eb49b2d934c34

    Download Submit