Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

f1d8f22ef2...f2.exe

windows7-x64

8

f1d8f22ef2...f2.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    134s
  • max time network
    160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2023, 19:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f1d8f22ef2a9c3a5f9e351f5cb8a282b5768a795e077977ac0cf2f1a127087f2.exe

  • Size

    3.7MB

  • MD5

    c7dd547c471f2cbee6f66291fc31cd20

  • SHA1

    b65b61864935845b230adbfd39fe3dcc494e3af4

  • SHA256

    f1d8f22ef2a9c3a5f9e351f5cb8a282b5768a795e077977ac0cf2f1a127087f2

  • SHA512

    cfb3ae59d723d765215e97fa2e4e26e28ba710482883b75f2b1a0cc9ee3ef16f0fab34ec8157bff369d25562964617dbf8b41925194296839b6866438d42f5f0

  • SSDEEP

    49152:iDCLomiK+15C6mBPtS3FpAB+r5u8QeKxFOJxdb4vZKVx6:cootK+1k6mLYKdzOJDb4v+x

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f1d8f22ef2a9c3a5f9e351f5cb8a282b5768a795e077977ac0cf2f1a127087f2.exe
    "C:\Users\Admin\AppData\Local\Temp\f1d8f22ef2a9c3a5f9e351f5cb8a282b5768a795e077977ac0cf2f1a127087f2.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    47f5fc799d69ed47a69c7cd556c0fa5b

    SHA1

    949dfa0356eff9ce19fab97241855770d852bde2

    SHA256

    e97a4dba02d422f4b07c77c7286a4f4100e96f39560bb858b31a0ab0d143eef2

    SHA512

    b1b61fd696df1e4520aadd8595243d60c18c60a7b8d544996cf5644ef63d595336f92ec13998ecb6b21520b7a50d1f3398bfc7c63bf8980cf21b3408e3d46929

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    3aaa7f88f9a50e90a33d2795a98991b2

    SHA1

    184910b4d2411356e83ed9a209973736051cb42a

    SHA256

    f13fe869f69dc1f0deeb41a7f0a5ea393e8831d735f50b75aef68b95a397a94d

    SHA512

    a2cc5d605da1164b2db4b416bf617fc880f91c6ddcd74b1119469e08736a8292c1d0e5aa684ce6c413a8c6c6073c973c7d56c338b4318bf850a52d3cc8734571

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    fec8f5b3612048d205749e228b03306a

    SHA1

    921e582b3c09b0947c8b0eef871727e45b1acad3

    SHA256

    1f568683d03460ca8ae369fd8dedc9b6639c6d2b193ab1b9bdd8e6671d1b4cb6

    SHA512

    6b1252e629f1b2c059f77fe7ce70bb8550fd80deb3f62f7e424c651306b4d7d52fb8aafdb2f55a7a971c21f9801f554abbe1f6b618e243b21b56fd84f4979a06

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    a355a380ba3e180154e6603c1a5abca1

    SHA1

    dd19ec25fce405d2a6cafa7f9743049fa80b2247

    SHA256

    61849c7198387adfc27fafb22ef4ac447dcf095b3ff0a7431145c0b96ab0d0ef

    SHA512

    4a2276d9e8beaf6754036104e047b20d45d54a814169f9a893b1bc0eb846d8359d8d0fe5a1ee8c47d8352567d032c696ff9c48b4da93d2f16e5ef035b95d6e0d

    Download Submit