Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

eaf316ba33...82.exe

windows7-x64

8

eaf316ba33...82.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    144s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2023, 10:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eaf316ba33407f0878bcb15cb4d5fdf260aa54213dfb25193e477d01aabafa82.exe

  • Size

    4.1MB

  • MD5

    7eb7b782c26ee0aaa4a1b2150e74fd95

  • SHA1

    c370b705940722a60dfac68b693b1f3545827c02

  • SHA256

    eaf316ba33407f0878bcb15cb4d5fdf260aa54213dfb25193e477d01aabafa82

  • SHA512

    0dbe5e8dde3160a794706996ee5c86a34fd54dbb6d10c398dd9bed5a072edde9e28748e879cef3393699fd99c3c012d4bd4ba721f517296e54bc2ad9abe4ea04

  • SSDEEP

    49152:KDnaVVMzMvkMUzM3n5x/FJ+OeAY+r5u8QeKxFOJxdb4vZKV:WaVizMvkMUg3n5x3KdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\eaf316ba33407f0878bcb15cb4d5fdf260aa54213dfb25193e477d01aabafa82.exe
    "C:\Users\Admin\AppData\Local\Temp\eaf316ba33407f0878bcb15cb4d5fdf260aa54213dfb25193e477d01aabafa82.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2820

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    53de24e41036a18320aeb216ba9cc607

    SHA1

    0158ae29465578d029d00d16e5d53cb4d276917b

    SHA256

    05325c9977eb044dd7bf32f29f0f629f5b33ca8646c525b740bf5bad28657b35

    SHA512

    afb85653aa58d1cec9c3acb7294040e46e0e73b259a44d00d986ddc2da6c54b2affbe37cf4afcc9c6bee3a33e979d56427baf698c8f2ab5b4bdf41b71935317f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    9c447328ade842a93ae1056fe6d26677

    SHA1

    d130712b7e6030f217a8827240a5a0a14b4daef5

    SHA256

    00dfbc27d4a54cd4647006b30637bfa237579a000c0e7bbe8e685728e787eacb

    SHA512

    c6a6b75bd3f0ecfcc9273c6a80f051e2e03fa3e0f5c9480a79fa23d2539ec12e28f20aa9b34721d6fe1f760555015778fa4721bd45f78c3da753fe3abdf9e1c1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    9c447328ade842a93ae1056fe6d26677

    SHA1

    d130712b7e6030f217a8827240a5a0a14b4daef5

    SHA256

    00dfbc27d4a54cd4647006b30637bfa237579a000c0e7bbe8e685728e787eacb

    SHA512

    c6a6b75bd3f0ecfcc9273c6a80f051e2e03fa3e0f5c9480a79fa23d2539ec12e28f20aa9b34721d6fe1f760555015778fa4721bd45f78c3da753fe3abdf9e1c1

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    1fece60be6a01148470f02553768c09a

    SHA1

    ccbfcd5bd4cecf0063ee0e3850e3e7dbf5dfad68

    SHA256

    a5a3ce2635e5ad9a9c087605e3b23e25a2653a321fe1b8a973e489242544a817

    SHA512

    73ea35057c5887b46f2be05a99b71eeb58318a16906b66c8c46e39be8b0f4c83c8cc74ac11ce83e298614128f3cee9a53d4883a45d148600466210eff62d7afb

    Download Submit