Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

c0075ac5a9...75.exe

windows7-x64

8

c0075ac5a9...75.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    143s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/10/2023, 20:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0075ac5a99d358d2ad8f2ca7e4cc21bd7bd40ffce397fa028c9af4e79bf3075.exe

  • Size

    4.6MB

  • MD5

    2628f6107c1deb3b81ae39c04fd5e6eb

  • SHA1

    bf4afa4e09ae406264a00439d4c0f91b48d0f610

  • SHA256

    c0075ac5a99d358d2ad8f2ca7e4cc21bd7bd40ffce397fa028c9af4e79bf3075

  • SHA512

    d191df08ca302d4257763b1c834e31f21c10b55a688d2fa8e54949dd40699682b78b16537507f7e7d703a4064f2308c1184a860be6fe029ac36893d91d52edef

  • SSDEEP

    98304:fcOxoa2orK2t+Gwo2xaWJWRzSKdzOJDb4v+:Tos2oWJWRzxwN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c0075ac5a99d358d2ad8f2ca7e4cc21bd7bd40ffce397fa028c9af4e79bf3075.exe
    "C:\Users\Admin\AppData\Local\Temp\c0075ac5a99d358d2ad8f2ca7e4cc21bd7bd40ffce397fa028c9af4e79bf3075.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    5c22412fa45dfdd34195405cfdd17db4

    SHA1

    901353c69724f1b18189c26068f162d098e90be9

    SHA256

    90077b2e0aeb753a58c8a3b7fed152bc4f4ea153fd6f2f94babd72679632bf7b

    SHA512

    440eef749054c4bfed5c1a0fce7529b8ad8647914958745a3c4c71a70af466f460919566b6e8b773dba22e35df9e36df21e1b6d04a2d281b9fb779fac8bfcb7b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    c5040fbdec4d8c5c1bd6eea3a257f0e2

    SHA1

    6f0e70fc9d68cd530f259eff51080e249961090f

    SHA256

    b7fcfc2fad6dc0460315acb42b4db8e5b5f97892ba70c505ad428e8f159015d0

    SHA512

    7798de86a7519cb46a31fa19d20cab647b863ded2e582f67b3610136a390646a5c7a44dfa835d229de8b25c340d6e7813083953d610d3dd585654bcae303ce8a

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    8c73d41e8618ad2e4feccea906a6ec41

    SHA1

    f3ec37829c8b52ca4bcf772f692d9822f043bc0f

    SHA256

    ac5fcd8af54e4ee5589dc6270e251f7a209ed662eb93c8c93ad8308f1f3e8c8e

    SHA512

    b821b0ad1ab5aa8f14d6cf7a3bec5be0dc7c2ca421e11fe79a5dd2dd7f24aa96ba402a9402c818ed6db684efc380fb005ca04545ba29097a2278f71e0803b497

    Download Submit