Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

176489f7ed...6b.exe

windows7-x64

8

176489f7ed...6b.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    136s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/11/2023, 04:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    176489f7edd99da79f8853849e2070929b49dde09d8b2608302021575c5be26b.exe

  • Size

    4.7MB

  • MD5

    1ed53730e8498ab010a31e81d7692777

  • SHA1

    ce8ebc34a9f7baeb80d7989d0109d6aa851e178f

  • SHA256

    176489f7edd99da79f8853849e2070929b49dde09d8b2608302021575c5be26b

  • SHA512

    30ef9f63b025b97a36496b6059d848836459761efa952092020a4515ffb1263a3f94e322ae6b293152aac859e353c14ad14982cfe3b3c1d25837ba4f580c6fe2

  • SSDEEP

    98304:y2XeHdZChmK2dkvDzF2CLcKdzOJDb4v+f:edZybPLwN0v+f

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\176489f7edd99da79f8853849e2070929b49dde09d8b2608302021575c5be26b.exe
    "C:\Users\Admin\AppData\Local\Temp\176489f7edd99da79f8853849e2070929b49dde09d8b2608302021575c5be26b.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    f1fd2104fb36b60a235c594540e46241

    SHA1

    457be821bbcc065a32aa892e1cfc91b675424ae4

    SHA256

    ebf97904923d0575e0917ad8f72984e28230be21c2c14a70f96046572c8d8c1d

    SHA512

    92ddb77407e6ccb498ca9b404939789fdb1088082f22a6046ccb7637e1762fa52df97d6559596cb3ce6dcc0e1577528b719594a81d13f69c6a7604ad375cb29f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    ff369fbc1daa40d38b03540940fdf767

    SHA1

    944d92044e68bba510c885873ff37d62b22662f7

    SHA256

    88fe6a0acf879b8b64dcd10fc39fb60391dbe81bfc1121a69eb89f00b978b9de

    SHA512

    9756b2c627de1e0151be0a7141ff9db1555799660eb5199fcb6858157a12615b69b6fefdcdede6f1f8e192a8407d2f5c870e66691c4238f274cb5b4fc08cc561

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    5058c9c1629cde749be7463937811abf

    SHA1

    714c61c73f4505ca8b3934b5c9e26ec1ebb018e7

    SHA256

    d8d30ca863494c124099a7d5ef4830d3d1d5c1649f1459c4d722c08429877b0a

    SHA512

    3b7da841c0ba3c366f500b03a331789b9e5043b9d99c5187ca869d2af963737bdecca1f3ab56ee42929850a9ceee7ef27a54e369c8a808a6b559b71f95430cc3

    Download Submit