Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

831cadcc5e...89.exe

windows7-x64

8

831cadcc5e...89.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/08/2023, 06:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    831cadcc5e0cdea170f1af51e6b75480aaa1a105f3c9dbf5bc7701ae4da58d89.exe

  • Size

    4.5MB

  • MD5

    ade5e33216b041ffdd7f3afca43096fe

  • SHA1

    c202be26da92bd70feae12b53159f7702e12f0ed

  • SHA256

    831cadcc5e0cdea170f1af51e6b75480aaa1a105f3c9dbf5bc7701ae4da58d89

  • SHA512

    bdf3e1a81e4b2668ef13244c803bafd552957c3e4cadb93c68921db5ca35383d1e096d5a086b4be0036d2895a3684165fc22ccc415dc82d45549b2e7bc300985

  • SSDEEP

    98304:ZOLHzIDtxDSK2Qi26im50OORKdzOJDb4v+:qym50OlwN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\831cadcc5e0cdea170f1af51e6b75480aaa1a105f3c9dbf5bc7701ae4da58d89.exe
    "C:\Users\Admin\AppData\Local\Temp\831cadcc5e0cdea170f1af51e6b75480aaa1a105f3c9dbf5bc7701ae4da58d89.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    3878e86ab2a11a2755c443c15b0d0ab1

    SHA1

    a31d01dc150025b95e2b08dadc313b9386e05c75

    SHA256

    c2a595414cfdfcdcc46bcead4705f4a1ec8e9e1f284ac8ad36e6cfb5232444c6

    SHA512

    578c34950be77676cc21b2c36399d8f7e4ee776770de58059cb277858a4bb3884e27d5549e6cc350ef9c84a84c9fcec5d0c544679fab85ffffc37d73074c0f5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    38735e588bb6af74db007cbad0b76838

    SHA1

    fc9795ecad1c2cdd8cc5a147f861511ac5e55b71

    SHA256

    584f7b68dac7a6ab6c57fdac097b07b88add580c1a6c79ee5fa18e404f36b505

    SHA512

    a488af326bf68024e7d4235d32a8018d9c93644ee7ccba479dea7238430904ef8365214a18d2b14f3074d616071bab41ac95eed2693f3ecb6cc4514ecca62405

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    6c174f23b61e776db4a5c147845421b3

    SHA1

    cbace8af34a08d3d6ad56c66ba203153c0be6fbd

    SHA256

    d5f6cc292bd30b82571f57e298dfbf54138b8621013e9fa4ce38249786636da6

    SHA512

    246c83723f59df290b9a7ceb814663957ef3d6e361b00c125119628560457f92456f3a2e800c970f862586b76bdc16ee068a049374c0b02c05fe84bef353debb

    Download Submit