Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

af94e91ccf...b8.exe

windows7-x64

8

af94e91ccf...b8.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    225s
  • max time network
    249s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 09:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    af94e91ccfeab4f359daedb053abd77eddd100882cd77f38719b3da82ff322b8.exe

  • Size

    4.0MB

  • MD5

    aa5338111ac8ba3d930eb2424cc78da3

  • SHA1

    6bf0d554786be15b660e12268b8af4eb1690eb43

  • SHA256

    af94e91ccfeab4f359daedb053abd77eddd100882cd77f38719b3da82ff322b8

  • SHA512

    bd77445b4316186388d5195aef822aa68edba107f9a4ac0f96ea1ed3c4ccebcc4d112424f08c5d2680df4529a9461e881b6da19f6b54588548088b5a2c97dc78

  • SSDEEP

    49152:Y0N3IpkodZfdlTXKnB3nZd2518Y+r5u8QeKxFOJxdb4vZKV:53IfZfdJXKB3nZdrKdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\af94e91ccfeab4f359daedb053abd77eddd100882cd77f38719b3da82ff322b8.exe
    "C:\Users\Admin\AppData\Local\Temp\af94e91ccfeab4f359daedb053abd77eddd100882cd77f38719b3da82ff322b8.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    afbf70aba4d812f523acbeb907a82559

    SHA1

    bb95a6fa187c218468873dded8ac13aba4f18e06

    SHA256

    465343d87db3cb5dd81a1223829170107d573fe13fc8c67aab4e572ebeeab1b6

    SHA512

    97e437cadc90ec8892393fcf8397565efdde6059bcf1a9d4b52481c8cdb3aa8c41dfb7e5690b605df53c78b92540fb2f8ed10895471795eef8c1fc509e1d4f28

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    0e0a4899c9aaa967ca9c0947ad645ce1

    SHA1

    b8a46585e7748060db67c63d9f59e303fa4f1436

    SHA256

    1d6828993bd89b6ec47a220940b1905f7b85acbfa685f4652e7cd471065eb303

    SHA512

    6e0e5bfb0785e90c5b26a7f72d7c3beeee55490acb7facb464867d28d96385f0ec5c9b9af8c07abf6e0eeb752845d5b77b62095f7ef0c1fcc4c3678062be0dd7

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    be2ee9f8a91813f640cd1f459618cc69

    SHA1

    780f95ea60c2b4380f68092a62cafe6c5f0890af

    SHA256

    afb0344ddcd4d4d349d2cebe8223b3954913df89d10d52aa0aba9929d2cd8075

    SHA512

    8cc5d0281ae4a1ab8185901341f6322dcf8ae5d6d16d60fcdd125cab35e0aad40f149a2cb4478fb387487d68402ac6c5ce166c9e2a0d5ad2f2e4d921740d6847

    Download Submit