Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

49164ea4e2...bb.exe

windows7-x64

1

49164ea4e2...bb.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/11/2023, 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49164ea4e21c7a2bea90ba86bf7c0512a1f96252f5eaa426326b908aa9b0b1bb.exe

  • Size

    4.7MB

  • MD5

    4fc7f3d4cd7520ef3b77bf545cb3af6c

  • SHA1

    779dd6f7e9945eea0fc7d0a9fba1cf427ee701f3

  • SHA256

    49164ea4e21c7a2bea90ba86bf7c0512a1f96252f5eaa426326b908aa9b0b1bb

  • SHA512

    b587724cc2c6871f19cc2225789b596a04544c42532ad7fd4f935a9ce26d41da86420ad94baed99f93b3a497e65e08e6739f19108dbbd05de68a2e6534785c0a

  • SSDEEP

    98304:gDxJifFR2pEbjfPArXnNlqnvfxXOKdzOJDb4v+:8ifFfEKvfTwN0v+

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\49164ea4e21c7a2bea90ba86bf7c0512a1f96252f5eaa426326b908aa9b0b1bb.exe
    "C:\Users\Admin\AppData\Local\Temp\49164ea4e21c7a2bea90ba86bf7c0512a1f96252f5eaa426326b908aa9b0b1bb.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    b44a2d8853d945ebebd8f09a088a4489

    SHA1

    d50ed374892b5232f410e44e2652b5f643082d6b

    SHA256

    86e0df9ab76203fc951fb53071fb55bcd7b26dc09d8a7ca98cd8770e099167c1

    SHA512

    64a85780897f6459703facb21e4d577d79eb0f4c073f56d39b798cec515d316b852b09ab3b2d4646990e1f5f9c2f6eeae7e651d7f4a664ce01156a9d061e5c2f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    7KB

    MD5

    887f5263abc222402501dbcc54291d85

    SHA1

    3922562f969d218488941a25deaa0f49a9705e6a

    SHA256

    d2184d69ef8b6e79f0668c0d0250924b3b9e8e0a47fe249fcf55a5d867c80499

    SHA512

    647abbfdba7cec5bd41061a825f4c1dbc0d82dd7e8f1db3f8bbe3f7b5a1d4bdc72d5a0dc600a317c0e48ebc43fe6b246a9bf2c0f95761c725cebb105d8397559

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    aac60d8588c292e1cda2d195050365f4

    SHA1

    324c8bf7644daeb4dfa057c45a354d30ec219e2d

    SHA256

    88e7bf9ff2e9669690f91b26ab012d71b0f5c2693be8baf8aa3fafc8213f54ab

    SHA512

    2132211be9d3a47e561cb2bbe1d77ffb1c7ce8c31cb7b1fae07cabe662f6144e5512cb473f89505aad4d402b02833b4dddddd4da276251de71ce3875c97ff7d4

    Download Submit