Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

79b4b8e637...3c.exe

windows7-x64

8

79b4b8e637...3c.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    151s
  • max time network
    164s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 09:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    79b4b8e6377543287d5f566fb7ac15b8f1c4da6c6b091e042365f89a28f4ac3c.exe

  • Size

    4.1MB

  • MD5

    553c0557de90f7353772dd76d761fc17

  • SHA1

    62df42d652150407fbb43164993e18c9615cab3f

  • SHA256

    79b4b8e6377543287d5f566fb7ac15b8f1c4da6c6b091e042365f89a28f4ac3c

  • SHA512

    95b050e5a6722a8709b4c2077e988fbbeb74764c641ed7ecbf578d3ecbf86d1b85fe309b9c82793533ce9eec9e9e7fe25f238b86128e211a8912f3f286ee2a11

  • SSDEEP

    49152:EMwdK4BjNb2Btv5FpbjVgRDRh1OY+r5u8QeKxFOJxdb4vZKV0hu:jwdXBZ2/5fbjORDiKdzOJDb4v+0h

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\79b4b8e6377543287d5f566fb7ac15b8f1c4da6c6b091e042365f89a28f4ac3c.exe
    "C:\Users\Admin\AppData\Local\Temp\79b4b8e6377543287d5f566fb7ac15b8f1c4da6c6b091e042365f89a28f4ac3c.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:400

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    a99ca25134a50e5c16dfa3e43e599cff

    SHA1

    37f9c7b039fbd493aad3dd56943578f2c49513cc

    SHA256

    e5a701e56f2f282eb36ed42fc14d031b5f443fa1cbd09fd8fa4609012e33ce1f

    SHA512

    8ddf98424dbc16c0a668bd9ed337478b3873c1a6ea6c7eb24d30f6d7b206b902432378577117e42f24cb215b5f4d35a75d35923a10cbfe9c05c348783a174f1d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    2KB

    MD5

    c8e9f371dc52df8069970d792312b45a

    SHA1

    5c624b9ce907c6aa03f4f2ca43367867a6291297

    SHA256

    2cabbb3dc690d45acc27d4cdc4279280dd0c5400d94efc58fc41ab6cf0f26da5

    SHA512

    f1fcf71cc3c90879b9b0b756851c03ba166f2bb41c83181e6f03677d6dbe1f0152426d687836b16ab347db1761f3537eced2d1f1d249cdc8ea5ea376d3ed237d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    78c39aa230500ec823cd5481ff88c1fb

    SHA1

    10a34afa9069313f24cdad0058de5c833d69eb2e

    SHA256

    c3550b3acedebc84ab213cfda857bd2e7b10e55525e925964724018f9c0d0d5e

    SHA512

    cd6ae96cefcb58315f83f5bbbee50108339d1d3221ca146ecb639deb1fbec66e6f15f1e3b18ee757835bb6ef763caeaecd73be03b7ea53cfe93cf24ce5b648e7

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    05313e031ce0c6141aaae8ed6c2bbfaf

    SHA1

    c75a31b94031e6b7f9d87341639dbb8e3ca8e18c

    SHA256

    76332c03346431ad4c5aee3e96185f4ad108e6a4dbe6a3be296bfdef37c23c92

    SHA512

    76075861d400dc903ecdc5d34056d44f6a2792741217124210b0578c2b3b5e8423e2f1845bda3bff26fa04805127a0adedef8be95971161f39d884d7bb79734b

    Download Submit