Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

d1ddc7a618...51.exe

windows7-x64

8

d1ddc7a618...51.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    135s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/11/2023, 14:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d1ddc7a618da0fede52333d6a87a976b41644b0e10a90b26f971f72709e8c251.exe

  • Size

    4.9MB

  • MD5

    aa7ba94db665056f7d1ab0944c2596b9

  • SHA1

    b2a8ef6426c85a953ebd8f2d79d8ca91eb9b15c2

  • SHA256

    d1ddc7a618da0fede52333d6a87a976b41644b0e10a90b26f971f72709e8c251

  • SHA512

    71a6eb17f782a944b96edfd4c156dad817928cc21de5191504033da58f808dbfe054a359e9b59ebda806355ecc0830965fcbdabbde83ee84092bb52c71d6beee

  • SSDEEP

    98304:nrS2H6ei5ncznNN2co86WDASKdzOJDb4v+:WYzX2c6WDawN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\d1ddc7a618da0fede52333d6a87a976b41644b0e10a90b26f971f72709e8c251.exe
    "C:\Users\Admin\AppData\Local\Temp\d1ddc7a618da0fede52333d6a87a976b41644b0e10a90b26f971f72709e8c251.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    51417154fbb7eccb64457a579ad67944

    SHA1

    d6a3523323e7d5f28a78a80cabecef46c7e958df

    SHA256

    26f755cafadc4e74dd15e9c7a005e7d381e061e452e5dfc964f8da70e63a2e9b

    SHA512

    65b10e847b0ef0f692bf9df608e486833477e0daf581a40f98a384a9c0e93eb763b12b5e571af450700de61cc0553ee1d515a546393cefc40b724106814c5fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    51417154fbb7eccb64457a579ad67944

    SHA1

    d6a3523323e7d5f28a78a80cabecef46c7e958df

    SHA256

    26f755cafadc4e74dd15e9c7a005e7d381e061e452e5dfc964f8da70e63a2e9b

    SHA512

    65b10e847b0ef0f692bf9df608e486833477e0daf581a40f98a384a9c0e93eb763b12b5e571af450700de61cc0553ee1d515a546393cefc40b724106814c5fed

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    586d82ce9295900f6da37a668c5e22d1

    SHA1

    757245725207f7b8646a2d32bf53bbf2f69aff86

    SHA256

    c61b92351e9146ed0a0aa0182658ea38aad5e71ce88c085e1598c8b47959d9fb

    SHA512

    03219e63f9014914bbacb81be14bcc0564e3a30fb97d0a9b53d5981521624af00fcb649ce394dbdeee0dfa1cd90cba9f2182337d1e90d1104aac67c1c65ff928

    Download Submit