Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

c95cb92bbd...30.exe

windows7-x64

8

c95cb92bbd...30.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230831-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230831-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/09/2023, 12:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c95cb92bbd39890c5de119d9b9b1db6b2ecc6e608109035c11fd6e99934f8430.exe

  • Size

    2.3MB

  • MD5

    b0e206cb537523fb2c40d2d1417bdd29

  • SHA1

    26876a7dc5b85b8a14af19c0a1ac0408d8e70cb1

  • SHA256

    c95cb92bbd39890c5de119d9b9b1db6b2ecc6e608109035c11fd6e99934f8430

  • SHA512

    11203eb3bbd811c1b01ca1ec862668284fc8064eccbdd876e7f2576e82ff5b262992b664c3dc0d8c259d6ed43cd708a80110d43bd4086dcbacbe45a8df124ae8

  • SSDEEP

    49152:cxefzHKtM0LBvIYkoECOd7a8Fd++r5u8QeI:yeKtnLBvILDCOJdpKL

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c95cb92bbd39890c5de119d9b9b1db6b2ecc6e608109035c11fd6e99934f8430.exe
    "C:\Users\Admin\AppData\Local\Temp\c95cb92bbd39890c5de119d9b9b1db6b2ecc6e608109035c11fd6e99934f8430.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    8d5879167ccd6a3276377affd0b2e2a8

    SHA1

    0f3c061aac6a0089a214c144d45a88510ff9a3ed

    SHA256

    c010d4a07d8650fbe265cdf21e5f1e06deb1125849bbf9cf124b490791f79de0

    SHA512

    b5e7b0ee1324481c4140152f97062c0a1b2352610a3086afd33c9344a0de607851183c628ec54fd9fef035b156f9aa60678b2e188df252314003796f9297db73

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    8d5879167ccd6a3276377affd0b2e2a8

    SHA1

    0f3c061aac6a0089a214c144d45a88510ff9a3ed

    SHA256

    c010d4a07d8650fbe265cdf21e5f1e06deb1125849bbf9cf124b490791f79de0

    SHA512

    b5e7b0ee1324481c4140152f97062c0a1b2352610a3086afd33c9344a0de607851183c628ec54fd9fef035b156f9aa60678b2e188df252314003796f9297db73

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    859b612ec52a43d8aa57bef36cdc3f43

    SHA1

    a872c800fa7fd9c1c80decf041f9d700380e9e8f

    SHA256

    5b193318daf79f206993bfd1f74a037cb2a6a205033c8299ed4ba3eeea7ab9a7

    SHA512

    8dafd46d9284eebd396373d03bc5916ac64658ff71e723522ce109c340356676e057598b76fec8d74de81a17a3e2125ed390cfcf2bdbb4dbd00ed395658ae936

    Download Submit