Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

2379dd4a25...37.exe

windows7-x64

8

2379dd4a25...37.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    133s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/11/2023, 14:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2379dd4a25c0700fda573a9cbd1e9a0b496f06f1da11b2e62579e1dc47b67337.exe

  • Size

    4.0MB

  • MD5

    ceb9ac99ed1531aeae28fb4b01313730

  • SHA1

    0eb41aea1e40c0c17e361be2df17bf53ce6c482d

  • SHA256

    2379dd4a25c0700fda573a9cbd1e9a0b496f06f1da11b2e62579e1dc47b67337

  • SHA512

    cb6bcca131e3248d77426ec6414c63382c7533589a273ca57f017dc4762d413a9ae160dedd1c20d23b62222a81968581ba694bad7558a6ac896c6fa29dc78b93

  • SSDEEP

    49152:eub3nCuhEBygPHQK2FWu5wQY+r5u8QeKxFOJxdb4vZKVZ:Nb3CuhEcgYK2FHKdzOJDb4v+Z

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2379dd4a25c0700fda573a9cbd1e9a0b496f06f1da11b2e62579e1dc47b67337.exe
    "C:\Users\Admin\AppData\Local\Temp\2379dd4a25c0700fda573a9cbd1e9a0b496f06f1da11b2e62579e1dc47b67337.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4492

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    d2ceb89cbb004a50eab20fd9067b6648

    SHA1

    a1a8cb40bb201c2401a43db7622a3b2d09936638

    SHA256

    b31cf7feb1e51504f5d6dcf0115e0df0c420f9353f00a0c64d405aca38f83224

    SHA512

    45c4d2eef403d31ede76c151a85bb15bebb53f1d55b9b6edff84d9b4db0ccdf9d3ba6a8968802f0179f7a9c5e0ce29df99aae71d9702026717e722e827bff21b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    bea7a57705db52adde6599af580d4694

    SHA1

    84e48705cbd3b812e675839ca4d2dfeee260250a

    SHA256

    925818f9246b6d084be4a1a0d5c7474668495da818141ecf074832d98fb30081

    SHA512

    6fb805abedd50dee6cce79ffb5cf7b1d0e0f8a93ed0f60a0ec84a73f66b5d52c469ca5fc150e7ce02d569dec57e3b19d548f103a0611d18edef1443216be75c5

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    bf7b53b4be180bd1c2ffd670e4b6f523

    SHA1

    697f82f117816c9e73cfbcd2319f521277015892

    SHA256

    14d3884f50208dd157b8a6bd49bc5025a2b635cf8c32fbd30a133aee26b95cd3

    SHA512

    d47a60a7b81bab22a399d6912f0d5c05bb5f5dad96c231566d80c636017a77964a97ad5a1518ff4acf976bbc4f534c78699a066fbc8cd2295422698707844232

    Download Submit