Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

58f5c32164...b6.exe

windows7-x64

8

58f5c32164...b6.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    149s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/10/2023, 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    58f5c3216475eb26af8c7ff3bc497fc66c395c548ba41edc0c3828e82e299cb6.exe

  • Size

    4.6MB

  • MD5

    1ff2a3b06f752dd00e80a05ed286579f

  • SHA1

    60e48e6605899a0d4986f67075df6f118748b93b

  • SHA256

    58f5c3216475eb26af8c7ff3bc497fc66c395c548ba41edc0c3828e82e299cb6

  • SHA512

    c17d45962c457df1884006367aded2a7f99959934aa865e482b695f4d25a145699df570ee077ef818c07a4dd10de151d461b65e486101ce290dd58b9c2800774

  • SSDEEP

    98304:IG1c5g+Wm3n0tzGoFrnoNspKdzOJDb4v+:UgjGoFrn4wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\58f5c3216475eb26af8c7ff3bc497fc66c395c548ba41edc0c3828e82e299cb6.exe
    "C:\Users\Admin\AppData\Local\Temp\58f5c3216475eb26af8c7ff3bc497fc66c395c548ba41edc0c3828e82e299cb6.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:5024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    8bb9e2c27f616bc232a2dd3335be1ae1

    SHA1

    f2ca45ef5b439bb3a48db95c113ef076a268dbf2

    SHA256

    3a0d5a7eec654b8fb156f07339c4f8bcfd6924ddca0be4c7274d8312e5d1b5f2

    SHA512

    324aee20f2fefccb4966a704d7a8cf11c2229c25c65043cafad505871f7043425a74c964829ce6c79d7f9194eea24d001c0fab27a4c6a3e88d3b6193962865dd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    8bb9e2c27f616bc232a2dd3335be1ae1

    SHA1

    f2ca45ef5b439bb3a48db95c113ef076a268dbf2

    SHA256

    3a0d5a7eec654b8fb156f07339c4f8bcfd6924ddca0be4c7274d8312e5d1b5f2

    SHA512

    324aee20f2fefccb4966a704d7a8cf11c2229c25c65043cafad505871f7043425a74c964829ce6c79d7f9194eea24d001c0fab27a4c6a3e88d3b6193962865dd

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    ddb46e7240fa5d8ca6978e841e601154

    SHA1

    96db4b11e3529e40a2a782941978799e0d03430a

    SHA256

    7d559be24d9140d06ef4b0dcb8ef6226c8f3d7582023bd443dc0bdc0b0c1991e

    SHA512

    f6cbbf80b4f51a05980e5a63852623d24e4304d5a2261054d1cec781c2a92dc3a16eca3d8ad1182cbfe0b076dccc94fad984c976c5c32d62cc179374a5ec60c5

    Download Submit