Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

27cf6dab51...47.exe

windows7-x64

8

27cf6dab51...47.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/08/2023, 15:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27cf6dab51d7f9e08431e6c5fa9376dbd9435c88f9e27a7aa72127e270d4c447.exe

  • Size

    2.3MB

  • MD5

    be6d8f3b8b9132969ccd36171815cf9c

  • SHA1

    25569a885b5af220d8e328ffb3f1d18f957d7da3

  • SHA256

    27cf6dab51d7f9e08431e6c5fa9376dbd9435c88f9e27a7aa72127e270d4c447

  • SHA512

    b350f1c400a35c23bb3a2a1d04b778f879fbea235fea10b96f5748b2698c6ca26e390765bc0145d885e017df7f7f92c28d9ae91ec691c5e51bf2a17338678ec3

  • SSDEEP

    49152:cxefzHKtM0LBvIYkoECOd7a8Fd++r5u8QeI:yeKtnLBvILDCOJdpKL

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\27cf6dab51d7f9e08431e6c5fa9376dbd9435c88f9e27a7aa72127e270d4c447.exe
    "C:\Users\Admin\AppData\Local\Temp\27cf6dab51d7f9e08431e6c5fa9376dbd9435c88f9e27a7aa72127e270d4c447.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:5016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    0bd3969c4a5e6bfb0e676b16655b4ea9

    SHA1

    8625faf8b58b337fa2421212f03be9bcdae41f30

    SHA256

    87cba6b3cd1dc0f3a25db04e7f5fc92a6f2bdef1939c8e2c4eb5f53dc4edee6a

    SHA512

    ba57ba01087eae2110399a32c9b27344c9619249c33bcaa9a9a70f3710cb62230eb9f1df28c8a80bb82351f34ef7868b82c638373b46ac67297a8f6296f947af

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    a7b503a7a5a61994ab0a595f49a14a93

    SHA1

    25e1d39bb4153d80b5af23d282582ed0cb2584c6

    SHA256

    32202aa270ecac91dbd69cacecea3a97b04bd898cc4950a8ad58d7c947b18b6d

    SHA512

    4be9b16d43cb4caf068d59bcdc49d3865db4843aeb45aa5ef005f0897be519efb331e4ceefd05a9693b1303a04559ba0b5802307358244628d6305fbcdafed39

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    0156fbd069a9f72ac89f74e551a01097

    SHA1

    fadee00b1443aa8ff30cd2637c9fec8244d56506

    SHA256

    e8ff9de2b154ce0c2036e7ee1943740ad7711732d7f67ee71c702e25696936e1

    SHA512

    ce3d83702ec6aa4985ef5dcc0b8028c72e3c53fb2cdeb070de5d0695025d57e44e44400ec32c179f358798e6dfcd5013f9aef4902e43db29dc1e74ea7be173ec

    Download Submit