Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a01c5bec56...c9.exe

windows7-x64

8

a01c5bec56...c9.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    133s
  • max time network
    171s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/11/2023, 16:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a01c5bec56efe88916340fd313a09e8916b2307e872725b36d882349078eb9c9.exe

  • Size

    4.0MB

  • MD5

    42c0b0eb62decb1b43572da9db003a95

  • SHA1

    f9fe5285454737bcd62b8baeac281286ba8de09c

  • SHA256

    a01c5bec56efe88916340fd313a09e8916b2307e872725b36d882349078eb9c9

  • SHA512

    76c4d52fed47d24120f12e5ce5b159b393d4eb0bc01442b5ceb9299d099af2d787f21ce710c6904f94628b08750a1e29bbcd49dfc382c568bb5a40f50430d90d

  • SSDEEP

    49152:3ub3nCuhEBygPHQK2FPzhhe3Y+r5u8QeKxFOJxdb4vZKVU:+b3CuhEcgYK2FoKdzOJDb4v+U

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a01c5bec56efe88916340fd313a09e8916b2307e872725b36d882349078eb9c9.exe
    "C:\Users\Admin\AppData\Local\Temp\a01c5bec56efe88916340fd313a09e8916b2307e872725b36d882349078eb9c9.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    436c3f910cf05345155a8078a174f5c9

    SHA1

    79d5c4dd5c3a0503c140ef9c9fdf3a729a0bf17c

    SHA256

    c5e1ef6e671d8df93b31c07d17c43aaf85e53336c200d07c4372027cee11b2eb

    SHA512

    c399d5d1dc7d8bd3ec0654e2435154796b0319cc2e28d935fb93779439ec4e017707507960fbe809a77b3c9483ece4e7a21e66d27deb85688bbb1e6a4eb30cb8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    8bcc871f49c51f06d275f9e941665bfd

    SHA1

    c833cf695cb106b128641dd7d93aed1a02acf079

    SHA256

    63f358ace1d216ea161da9f7a0566b8a8a7bc9bd8c35d6ca675c546b3fcb4937

    SHA512

    7e2e70a13e9434e0d9193b457413f26c22173e4fa58f859b06896842995852058033b0dd84c8cc075b6e805bc8b730afc541e6e9ce0775f485cfd23721af0baf

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    3fd32904b5f67fd2f7080f78fb6a8bc8

    SHA1

    54fb12f56ab2d2400fb117e48a019080ef043083

    SHA256

    0eeef6d444d9153197cc121f5741d75abdfb1f0e2d693bf777f9492098dbb073

    SHA512

    8e1046f79cfbdadf7e4eafd262034c82bcc8bbf59ab64be44e5ab5720bef0d1d52b9635fd551da652257ad781c1c12fd850ce1ae651d4688567ba831074902b6

    Download Submit