Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

faf34c4d61...7a.exe

windows7-x64

8

faf34c4d61...7a.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    175s
  • max time network
    200s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2023, 13:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    faf34c4d612776e66697f95d2dd0667286a518b51ccfe82ebc204cc5c7ee4a7a.exe

  • Size

    4.8MB

  • MD5

    4fc6d54dd9f2211cb4a5e35297e18a12

  • SHA1

    e7369cfd2bca7bf65b4a674394ea32be4b899086

  • SHA256

    faf34c4d612776e66697f95d2dd0667286a518b51ccfe82ebc204cc5c7ee4a7a

  • SHA512

    a03a0600a94c3a64955b44a126105bee5c387730ba2d70d16218a58adcfd0a10c4244ef26dc18699c31363694c08542bb3303d60ca774fe2c1463454d940ebac

  • SSDEEP

    49152:dsLru7MMI9WcHupei+kncBNdVpxUw4D1glJEqPTx4Y+r5u8QeKxFOJxdb4vZKV:QrS2H6ei5ncznW6TwKdzOJDb4v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\faf34c4d612776e66697f95d2dd0667286a518b51ccfe82ebc204cc5c7ee4a7a.exe
    "C:\Users\Admin\AppData\Local\Temp\faf34c4d612776e66697f95d2dd0667286a518b51ccfe82ebc204cc5c7ee4a7a.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    b68ac667c9253f58e0c5a52980928be4

    SHA1

    747bb8558a4679dd509ff34fee9ccc8e1cd086c8

    SHA256

    2edd538e51c32f785b6f0429389e58ea05681a4c97fa62485a2368f017ccc11d

    SHA512

    114863cff8be62f41420f79f3c506cf31852931446f9e774e692d2e1d8c4e29eb623b28102b5515cadf84c8e7ade76dfb71fc0d3f5c8d607a384c91e6d854f6c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    e08d760f5e449b8cb9a46960cb837752

    SHA1

    fc1a8b4d4ee2be6637cdc9acae129634a21869b1

    SHA256

    908964b6c32190f8e2d923e9b2ee65609e906c95970478b4045cae5c6e41c1f6

    SHA512

    cf3d04cbb870071c969a8a2fe62252e264095b9278ec9458e0330306d5c53262a3dad6e35abbe6950874d6fb346a6c9ccea25f26af6d27b82602fdc61391e46b

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    994b8e1a88b22aa1add1becd003c31f2

    SHA1

    40ea2f4eb0e8006fa36f9f63b1719eb78093f723

    SHA256

    6565ee780ed10e6f3892354dd50a87ebc691df6312a4917f56a2176477812860

    SHA512

    2c30bc848cbb372ed04c125456dc8583828cc2d483d7b1446293fb7ab1a3ee6a92ed884e2dff0634c48d6453e84e607708ae38ad830658fa897ebae3f65db86d

    Download Submit