Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

cf2dfaeb09...0a.exe

windows7-x64

8

cf2dfaeb09...0a.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    146s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/10/2023, 13:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf2dfaeb09a47c190361286349cf401008308a2fbc8316a82829e5ef46c2670a.exe

  • Size

    4.9MB

  • MD5

    bf3832d0fbf534522bfec031e6432efe

  • SHA1

    7f95c72cd721f8ee520d0dafcf893bbd4974e9bd

  • SHA256

    cf2dfaeb09a47c190361286349cf401008308a2fbc8316a82829e5ef46c2670a

  • SHA512

    bf87ca632a44018f72968e0a07ea26cdb358cd83c0d98f4616b220ada75096985602678527e59fc57d9111a701b08f9a59a074cdf4aa3f617b4a8a4b7ce28e37

  • SSDEEP

    98304:tTP0EZ36bjYOrtYtsRXIov2vRKdzOJDb4v+a:10EEYtaE8wN0v+a

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\cf2dfaeb09a47c190361286349cf401008308a2fbc8316a82829e5ef46c2670a.exe
    "C:\Users\Admin\AppData\Local\Temp\cf2dfaeb09a47c190361286349cf401008308a2fbc8316a82829e5ef46c2670a.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    aa8fcc43da9741bf109116cecfcd0055

    SHA1

    cd4a1ef29cd6edd3e1dc6e69e82b7b3fdd317172

    SHA256

    bcd12950cc0da190164c99b5ef183c1b25ba446d409853f51219cd0055d357e8

    SHA512

    1bb5a00f15b6e03890156247c90edc2fc0d1f0646a409e9973bccb02245c24637c8799145deb3561ff7a35dcbea4c77c5666bf6160ac18fc48cb8a659fbc42f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    aa8fcc43da9741bf109116cecfcd0055

    SHA1

    cd4a1ef29cd6edd3e1dc6e69e82b7b3fdd317172

    SHA256

    bcd12950cc0da190164c99b5ef183c1b25ba446d409853f51219cd0055d357e8

    SHA512

    1bb5a00f15b6e03890156247c90edc2fc0d1f0646a409e9973bccb02245c24637c8799145deb3561ff7a35dcbea4c77c5666bf6160ac18fc48cb8a659fbc42f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    a3b2c2afca613b391ccbcac9aee11781

    SHA1

    89f971a8aaf645f2148a46941ee0c8035e1fac1b

    SHA256

    4f09e52cb5cc3d49534a92f749aad36d7000e79fdb3dad44262eabc8eb3a6180

    SHA512

    672e34854fc0c0592a99e5c16326d74853e64a97d38c2b884f65007055d3e1d279f43b39eb921c165c8a54c054469d5f27ac3ab72b2296aeb9f54a2cde2132cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    e8cc1fcd910a9d6e0d4be6981b1d358d

    SHA1

    fec1bf0a55a96cb46c0b12f2539ddf6675066d05

    SHA256

    b1f0078377134d83d71e0c23bd8df0de07811adc9a632770d9be330744fc52d1

    SHA512

    ad17f75f54088810b0d36ddb2c9122b9bf76540b2dd39aaf1686a28f79e7e920d2191840831dcfdcd42585288514705f2d8764a40d8e47111e62ad93813aadd8

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    6f16bdb533dc4493133e6084606fd204

    SHA1

    7f70a691426ee946ddd423ce429f01e006d97a89

    SHA256

    cef5c7688cfe62d08c10b9d1d6af1931195b4c77ffcc4851a7b57acee4fe4fc8

    SHA512

    ddeda2a12c54a4714ab77fd624a98fa7169a538393718900f999c0647a6b4dfd1ba3d4e362f38ebfe92cfc5312be5ecff6598788bb5a62b3e91d7b6296ebf39b

    Download Submit