Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

36fa5d0c8b...b1.exe

windows7-x64

8

36fa5d0c8b...b1.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    134s
  • max time network
    139s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/08/2023, 15:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36fa5d0c8bf96e2e8a5e5c6b00df4a40a0ee51c1dbe7acf6a59d2b78577631b1.exe

  • Size

    4.2MB

  • MD5

    a3fab90af0c63dc7a94a2b420143a206

  • SHA1

    1db0cc26af5769c2fa1272bc8200deba0517fa53

  • SHA256

    36fa5d0c8bf96e2e8a5e5c6b00df4a40a0ee51c1dbe7acf6a59d2b78577631b1

  • SHA512

    6c814f7b89e15a9d7b45b808e0699437fc2504cbac1d5724634a4759e0dda265d627b0a0849b3f6ee356ff5e0c120278383d79aceb26ce5912264fa464e5daf8

  • SSDEEP

    98304:1dh5q7noS9h6mvD1PfTLWKdzOJDb4v+q7:1ZqNJPLLlwN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\36fa5d0c8bf96e2e8a5e5c6b00df4a40a0ee51c1dbe7acf6a59d2b78577631b1.exe
    "C:\Users\Admin\AppData\Local\Temp\36fa5d0c8bf96e2e8a5e5c6b00df4a40a0ee51c1dbe7acf6a59d2b78577631b1.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    78e524be06fd8afd44f1add549bf0c82

    SHA1

    e530d91315507a8be1bcf1cbae19b6c006720711

    SHA256

    f5e7b8fba4b4f32124c79685024439d18cdb6e3e6bae6aa844a9f213693b92a5

    SHA512

    40fb99c4e7a9bd80e0a9f6413e7bb15ee94691dce798610973ee62d598c982405e6a5f6b4717b827df06c17db584b106342d4ee30b1d34acf62d7b586a2d0bb4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    67a8c02e7bc6169ca3aa7c8c0971505a

    SHA1

    961f67a87fe88b13fbbae29ac33ebd55aeadad0e

    SHA256

    1dba420c4402b2af768d47b3064cdf4af61995dac517c565eaca95b1ed22c5f3

    SHA512

    a8bf080eb11441f37c3a6e1f86c4082622dff3bcf6037aa2a36537616d4b221b529d9a6b608f3a72eb0b95fea807f7a1b8ea4362e5bf07e6561b2584ee6714ca

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    29a32cb4fd4336828585a16ea4cf5397

    SHA1

    e809e11c17b540b15a29ba0a3430f79a3dbc7b69

    SHA256

    0a8d07ab3020df4e8129334ae996888142d9a2368ebb05f9384b12f4437e5dfa

    SHA512

    6fe2c7fc5f7c461586d412cde58339b0293bb27ce2431bdab6263c283e492a0f05f7fe480343fd5012ce4e490d9a407f833f1be5d4d9c30d13009a64e4c47946

    Download Submit