Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

5742ad7f9a...ae.exe

windows7-x64

8

5742ad7f9a...ae.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    19/11/2023, 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5742ad7f9a59e1b58a548198a077173365d98c3cf8716fb8c9b78cece60782ae.exe

  • Size

    4.7MB

  • MD5

    54e2d390d776f3e89c4453b7382bac81

  • SHA1

    aaf4998433bf0545143f3f8296951583e712bc8a

  • SHA256

    5742ad7f9a59e1b58a548198a077173365d98c3cf8716fb8c9b78cece60782ae

  • SHA512

    901f16d2ee31daec5c79cbbf57deb07fdd96b5b3f42aa986ff79900c6391040ca981cc2b7535cd27141fe3686f07cb7b0dae51831099b0d93f4676d710cbcd97

  • SSDEEP

    98304:OhQI4CudV8s3Mgz/32CL0xKdzOJDb4v+:VbHF1wN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5742ad7f9a59e1b58a548198a077173365d98c3cf8716fb8c9b78cece60782ae.exe
    "C:\Users\Admin\AppData\Local\Temp\5742ad7f9a59e1b58a548198a077173365d98c3cf8716fb8c9b78cece60782ae.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:2200

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Cab41B4.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    35bfe338c6952c8a812c363df3099f04

    SHA1

    0f712dbdcca4d329ea9aa646fb28cb3fb2a9d8f8

    SHA256

    869f1f7273d38dc4d4e7cb789b40d5c1a097df99026c14c462786163a0694967

    SHA512

    ecce19b1a5a202ccaad3bfcc41cac4133905fc2d42fd0e1413f9108551d3e86af839413f82396a7b922d41e91fa833f64fb6e2a182c131a2e16d54572ef0d546

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    493fc0ea6b0203fd46a798483dfdbba0

    SHA1

    d26aa71c09ed72bcccc8cf58ca4d4c3063781912

    SHA256

    744a642a252bfae7e8e7c76b588d9ac7e0df491b1717a8baff4e057f40d31947

    SHA512

    47a3a72538b4086e736faefb147daf0b996962842959afdd6ac60c42a147567a3e806afc72a55a4fbab9ddfcc837a3e06044478661c6f42f2dd2fd74c4754f17

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    3KB

    MD5

    15d7c61c41b3f3225fa2d3920191d3a7

    SHA1

    9a7f0245f96eabe10ed66e117489be887f5191bf

    SHA256

    20b565bb6a858cfef86427cd56fe23c045657f304b934e9eee75a87d316ffc85

    SHA512

    b0ae301463db3653bec4100ba6f0f4e7224e29efa5881e0043484d75f217602679fa9e58d080f9ce2c9fff008fd422ab27fe50f46e8f1aae5329017cf422c130

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    53c53b2eab1ca9173c1abcbacc50854f

    SHA1

    9ca66bd5ce198527e127a48301bb0924b88d4832

    SHA256

    b33d1488b32a371dc77c80d4e9df52893bbbd2db428a9398e01fddfb29572bef

    SHA512

    816d6f7be4fc053866d669c3488f0ed00037088437b1a3933de8186bc07d8ad0f445e2c70c13969ccb4922c2c14da5001e51df135f7b5988edb5f904a586b88e

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    0c58bd672a081287b7ba73ff58c391f9

    SHA1

    b34a9402ea1b16fbcb28002c577af7061af70d6c

    SHA256

    942f7cd880f4e215a65454a07714819feb5bbfea0b58479d524c136e6d6899de

    SHA512

    9dabab7df00b079a1678297ac3982f3e8170d7cc27cbe7c583d40d0eedb96dd951dcf85a3cd7a45d47f3c68fc5032f1bb254f849106429e2797ee503d4661090

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb3E48.tmp
    Filesize

    131.8MB

    MD5

    da940095a5eef85fe9ebd3b45637e9ee

    SHA1

    84aa1c181f05528d14170967d5e4d335b6264a39

    SHA256

    6885dc08db3221e64fbc6908bc12426b732dfa5840ce61e1f1472a301625075b

    SHA512

    a67eb6792d24fc75d6882e35753f37806ae5b847513dc6e3b14c96409df784d85cf71d227f6696a94cf8fb1d2e065ee0fb84b3650e9b692feebadd69798a928d

    Download Submit

  • \Users\Admin\AppData\Local\Temp\yb3E48.tmp
    Filesize

    131.8MB

    MD5

    da940095a5eef85fe9ebd3b45637e9ee

    SHA1

    84aa1c181f05528d14170967d5e4d335b6264a39

    SHA256

    6885dc08db3221e64fbc6908bc12426b732dfa5840ce61e1f1472a301625075b

    SHA512

    a67eb6792d24fc75d6882e35753f37806ae5b847513dc6e3b14c96409df784d85cf71d227f6696a94cf8fb1d2e065ee0fb84b3650e9b692feebadd69798a928d

    Download Submit