Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

e0de016b37...f5.exe

windows7-x64

8

e0de016b37...f5.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/08/2023, 19:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e0de016b376fb0a86fdded81e35f4a4da73e385b6061adff84f6c187c40cd3f5.exe

  • Size

    3.7MB

  • MD5

    6bc1ebc5f4faaf9c7ba9006233dff3aa

  • SHA1

    367845ef37b663e15628d8e632b07d70f1a4f3e3

  • SHA256

    e0de016b376fb0a86fdded81e35f4a4da73e385b6061adff84f6c187c40cd3f5

  • SHA512

    df75674ad78c142a6e3bdeae09098318e0d8612a24c262a9cb35ef0d2706b1606d42e02b7c9a10960525cbbeaf9eeff04d4f836b7cc11ce35f65132932b4e78c

  • SSDEEP

    49152:v6x/NP5OJ7noS95X6mXfKezJgB+r5u8QeKxFOJxdb4vZKVB7:Sdh5q7noS9h6mvDPKdzOJDb4v+B7

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e0de016b376fb0a86fdded81e35f4a4da73e385b6061adff84f6c187c40cd3f5.exe
    "C:\Users\Admin\AppData\Local\Temp\e0de016b376fb0a86fdded81e35f4a4da73e385b6061adff84f6c187c40cd3f5.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    926b95410be26bfc7c6ad00f893f1bbf

    SHA1

    4e5a51b2288f9ebaa9c0fe5171f4716a5c5873c8

    SHA256

    167db3a905a81706b89619a60d8e1a644fe3bd5df4e5475811109d3fb559b603

    SHA512

    348debd0ff2bbb18f95fced11ee3325f24c765b9c144b95b861f4d3db2bef6f21716e04913461f85d9a0b0cb434463c3e2ad776950133f0f9e728218e66d5f76

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    9613d3549f1f12dbac477c32fa8a2d4c

    SHA1

    22175693ab07b76c09e8b342d17a64b96ee2bd78

    SHA256

    a23e0f473e1fd3ac970fb9a2c1769447ae87b360d0f40def6c0f47df57f20dc2

    SHA512

    0e2df8f3c52369412e8d5a7e37cefc816c0319db272e4278ac8e354b32beffcfa7b5513bbda42deadcd8f662884050f4bae28b1f16ea1ecdc163a49805cb8f8e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    9613d3549f1f12dbac477c32fa8a2d4c

    SHA1

    22175693ab07b76c09e8b342d17a64b96ee2bd78

    SHA256

    a23e0f473e1fd3ac970fb9a2c1769447ae87b360d0f40def6c0f47df57f20dc2

    SHA512

    0e2df8f3c52369412e8d5a7e37cefc816c0319db272e4278ac8e354b32beffcfa7b5513bbda42deadcd8f662884050f4bae28b1f16ea1ecdc163a49805cb8f8e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    be4a79674123f9d3ee0ea59113d439a6

    SHA1

    3c61d2405fab089ef40e30e15f8e40ed83430b7f

    SHA256

    ac8aae2546dd4b1944ab5f7538c22f9d38c8283a45009f522f18032ae4255c5d

    SHA512

    dd3a3d08d95e644679d6dffbbaf40e49bd50c293257c3198f46f9512769eda9624dc2daf05a21bcbe909f30047a6655d616550067ed17a95092114c4a142ff83

    Download Submit