Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

47d9e028f6...0f.exe

windows7-x64

8

47d9e028f6...0f.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/11/2023, 09:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    47d9e028f6978c4199c6306d3f2da2766c8392b66ef83068b0f4bb1ccc42540f.exe

  • Size

    4.0MB

  • MD5

    f0f875f6f788ea7944800fa02e122a43

  • SHA1

    938f2ec6217242c143ae00a8e6ac1c72ef5e1b79

  • SHA256

    47d9e028f6978c4199c6306d3f2da2766c8392b66ef83068b0f4bb1ccc42540f

  • SHA512

    25429bcb6a8bb09542b0101d36d7a47bfe3e1246c25a982d7169ca4b12fdd3664a6b59ce1f5d798f1e3a86765c9d2f70f01e3f474a74621572c87519c5c0800a

  • SSDEEP

    49152:6ub3nCuhEBygPHQK2FWK9w8Y+r5u8QeKxFOJxdb4vZKVx:hb3CuhEcgYK2FhKdzOJDb4v+x

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\47d9e028f6978c4199c6306d3f2da2766c8392b66ef83068b0f4bb1ccc42540f.exe
    "C:\Users\Admin\AppData\Local\Temp\47d9e028f6978c4199c6306d3f2da2766c8392b66ef83068b0f4bb1ccc42540f.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2568

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    c3eeecfcfaa023379711f42f982adbda

    SHA1

    f697b6e132e9b91851e47ee45e84e4ed400579c6

    SHA256

    1a261fbc3c9be4f21f1637afd9a433f278cd84d2698788e7052577775d6a3211

    SHA512

    ce66021295e47245386c75710c94e2493e47cc1e8d076f474e0b25275211dc5cfe8a00638d424f48bc17bb9baa11790313c5310c494db63685ffce0515ec6bd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    8004c47cd992b2c5522ea99c90ecd9e0

    SHA1

    2b9944a42ccdc0e825e0a59944f88886aa5e7c56

    SHA256

    4642d7068ae8f35cc1bfc49bdf64515df1281e7d18e31b1b01bb1bd8fd81f632

    SHA512

    e02e74a5636769ee01231b9fb92e1d53f3feb6046c4e5f25a77a5f017db6e1f9ed212baa33747458534bbd28f3538f3b2651bd8b1b3d38fae75442c8cc4ed248

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    6788f3bf4618196757fed755f3c655ea

    SHA1

    cfca9d698db556b08a2cb0c140adc8e05396fa34

    SHA256

    1e921c003c76bc714ba19f7adafb10fe477c845aa7e094693e730e42205dd663

    SHA512

    6cdf3c4b2cd2622997ce5e550548563578dc0e83cfb335c6661c145758e49da6cf8c577b992df26e11034d417834d4427b5d890da48046c8d7bea28bbf50a0d1

    Download Submit