Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

e9cb6af71f...bd.exe

windows7-x64

8

e9cb6af71f...bd.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    137s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/11/2023, 19:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe

  • Size

    4.9MB

  • MD5

    686504ea18683ef47a1700c96d60b66a

  • SHA1

    bd83f7408a82aad453a447b004172464e67d6c1f

  • SHA256

    e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd

  • SHA512

    e1c784cac4a5a57859797eff51b09addb8f68a3419a4b115da54f109605d69e2c0da0cb77e290a55b5c19e78c0b7390cbf59180c3bf5bcc9a6be723b88aef9cd

  • SSDEEP

    98304:nrS2H6ei5ncznNN2co86WDASKdzOJDb4v+:WYzX2c6WDawN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe
    "C:\Users\Admin\AppData\Local\Temp\e9cb6af71f2b6652a19f8d9b8c537332cff05c15c1ba710b1ba77a825e166ebd.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    8bd4591ea30166057331a9ef01bde69a

    SHA1

    9a2b353a4397e657e31cf48a0162f42bf61b8766

    SHA256

    4e49db0465ed265790c3d8048981bc151291ec0708d7a0468144b7dfb93b1bab

    SHA512

    0264d70335ced409c72705327f0c1f0bb66ce6f40cc027daace737457b2fa9afc4b56974cb0f6d3a1540180e48b686ca5e1a45d456d64815f9ee0b5b1f98fd0a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    8bd4591ea30166057331a9ef01bde69a

    SHA1

    9a2b353a4397e657e31cf48a0162f42bf61b8766

    SHA256

    4e49db0465ed265790c3d8048981bc151291ec0708d7a0468144b7dfb93b1bab

    SHA512

    0264d70335ced409c72705327f0c1f0bb66ce6f40cc027daace737457b2fa9afc4b56974cb0f6d3a1540180e48b686ca5e1a45d456d64815f9ee0b5b1f98fd0a

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    df388058c47c2e3444e7ad52df8c18a2

    SHA1

    f7762b93b45de2a02bdb32cd735784ba78cd06c5

    SHA256

    bd87bd592a6b0ebfc677ecc5de23e8f46879c59def51c598b1c918d47333d63b

    SHA512

    e157f1ce94654ed0a855dcc70508660db26daa7b940db19bcf6a823840e663409471c4d0043497cae071f01789fc46e23586a0d48ac5df295525e553fc1f16f6

    Download Submit