Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

8819c4552f...11.exe

windows7-x64

8

8819c4552f...11.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    208s
  • max time network
    216s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2023, 12:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8819c4552fe3cb793b5a8e97a5cf8c3dfb6c401deabcc9203a79a8b7f4f05211.exe

  • Size

    4.9MB

  • MD5

    2b32691dc797af76da3fa995527c3d7a

  • SHA1

    69a134f860495040d236364c3d2271069d98bec6

  • SHA256

    8819c4552fe3cb793b5a8e97a5cf8c3dfb6c401deabcc9203a79a8b7f4f05211

  • SHA512

    2a7f87eda885b09ee8cd576b62c840b04e3656dc0602284754e0bb8b8b12d284bb76c4553084dd0292a769deab272b785c9e90db2afcc3f4086193244808a901

  • SSDEEP

    98304:JmHxs33+rz+kDBre2PUi7KdzOJDb4v+y:MxsTf2MHwN0v+y

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\8819c4552fe3cb793b5a8e97a5cf8c3dfb6c401deabcc9203a79a8b7f4f05211.exe
    "C:\Users\Admin\AppData\Local\Temp\8819c4552fe3cb793b5a8e97a5cf8c3dfb6c401deabcc9203a79a8b7f4f05211.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    c47505bc343ac82af1a00022de117287

    SHA1

    4e7ee0b97a199bae9a3f639d488c6e47ec863bdd

    SHA256

    524c06f2dfa505fa9871133f851e33b9cbab8553ff5ce02ed20cf1b07a09f2c8

    SHA512

    e3e67197703f0f89997eb6165aac01179074df26b3ee651c489cf4583ec792376aad522b0186c22d4df39de39ed26f37ca403ab3a1885700d43b46c290c11672

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    4ebbb6f0f0ca807f4494a888d0fa6a5d

    SHA1

    9cbbfa6856860f0929fa5fd1d5cd19147d3eadda

    SHA256

    4d383e0d3005b2fb9828f6c7ad5bf19b3caa53498d923f337beb309de3ed5101

    SHA512

    603ce563b0dea6d2dfc7293205628d5f235697b1a559914e858aa4df29d2fe865a140d1e062c095fd78e1392613c05ccdf9151b0a2ef9daaf98ed80e3cdb98d5

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    fd070e7c7c59af4d0a3ea0b621c1201b

    SHA1

    61c96863d21de067d0a1d5ee96a17c7986fd2e59

    SHA256

    74948cac72d1848fedd94e20c3b4229061cf841c7f6e08a94a844365750c9c81

    SHA512

    2503a2c8fd469ec3866800fbc9a8e8bac03ffa4f5cd45b7130079e28bb1947e76ff26aa79651fe4084332f2cb064cb6d3f1fa13e4c585d6207fb23ebc231460b

    Download Submit