Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

1ce3801087...44.exe

windows7-x64

8

1ce3801087...44.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/08/2023, 17:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ce38010870dd52d4986a90eee58e8ef2e0cc03614b5669c5d76ee168e9bc944.exe

  • Size

    3.7MB

  • MD5

    1ef203e570bb917fe62594eca39a1b13

  • SHA1

    aa520ea8928592d972bb82b5627cad91947875de

  • SHA256

    1ce38010870dd52d4986a90eee58e8ef2e0cc03614b5669c5d76ee168e9bc944

  • SHA512

    6ef5dab9b17b0f8ff7151ca5231e9806bb8151f9fb325cab1064b9476cc8226849b005948502ef4fdcb4f214f94294f33f7db12f76c08cb3e45ee1a00dbc05cc

  • SSDEEP

    49152:WhQ8lPzRnZp4y5C6mB0j4KTB+r5u8QeKxFOJxdb4vZKV8:SllLRnZp4yE6mdVKdzOJDb4v+8

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1ce38010870dd52d4986a90eee58e8ef2e0cc03614b5669c5d76ee168e9bc944.exe
    "C:\Users\Admin\AppData\Local\Temp\1ce38010870dd52d4986a90eee58e8ef2e0cc03614b5669c5d76ee168e9bc944.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    a635aecae15d1807fb8e0cc77d31c522

    SHA1

    6f38bfb66f63c3c232321b3a1c2f18adce78f138

    SHA256

    0c0a793d07de4b95254392a40c333e6c3b5c584223eb90121345066cd49342dd

    SHA512

    b916475fa0f7af52d3b5612901f4b5a1b0db00691221db13db452b1d879bdd07fea231ba960cf861c71535ca62550210212e1d6bf06a3c2e254ecb3c89d64e26

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    a635aecae15d1807fb8e0cc77d31c522

    SHA1

    6f38bfb66f63c3c232321b3a1c2f18adce78f138

    SHA256

    0c0a793d07de4b95254392a40c333e6c3b5c584223eb90121345066cd49342dd

    SHA512

    b916475fa0f7af52d3b5612901f4b5a1b0db00691221db13db452b1d879bdd07fea231ba960cf861c71535ca62550210212e1d6bf06a3c2e254ecb3c89d64e26

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    2cfe426e84b0f7dc4bcad726df30b244

    SHA1

    2492d9845a57e37ae983cd9c682b307d21fbfd2a

    SHA256

    680fbdb4d8a0212750f75d26d3b2f25f41b9c42dfebce3d0d3746da1c50c6546

    SHA512

    056f2654c9e3d0285ac2d301bb74d83c9d64f3595c50abee0f0775b37068bad5e391b0fc42851c8758bf1ffc038f8777d1c9805e03e211b98e2886676ce4148c

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    ad6d460f299e08e628bbbb5438c288fb

    SHA1

    105b093eb0894be5797c7cfeddbacaaec5513db2

    SHA256

    609d8d14484217e74b8462244f795b0db67e937534e8016fc506451ad9e90bc6

    SHA512

    e91ddfa556035ead343b35f0ed6b2996aaff14a2d2409a42ed9bb89c6114c0e51b67251fc510dfa74e0a99c6af59aeccc1b24862894a588c29d11f60fb7dd9c0

    Download Submit