Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

393157b838...0e.exe

windows7-x64

8

393157b838...0e.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231020-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/11/2023, 05:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    393157b838cddb2366850df41f00a2fd3b5240541fd1d1ce41d7abbfbe2a980e.exe

  • Size

    4.9MB

  • MD5

    0b2386e206b20ae14f1eee8594522937

  • SHA1

    6dd1221f9f59c46e2e3b8de983405c59d09c1a81

  • SHA256

    393157b838cddb2366850df41f00a2fd3b5240541fd1d1ce41d7abbfbe2a980e

  • SHA512

    d8d8f46bfd05b629cf3795199bf360597f04427109f895a2e10e312ac53759f56b7e7b701209d035b1239e42293797ad2c4f33240ef1fff3889c3f88c93e5910

  • SSDEEP

    98304:4hQI4CudV8s3MJ279sA40aBKdzOJDb4v+:7bM2p+nswN0v+

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\393157b838cddb2366850df41f00a2fd3b5240541fd1d1ce41d7abbfbe2a980e.exe
    "C:\Users\Admin\AppData\Local\Temp\393157b838cddb2366850df41f00a2fd3b5240541fd1d1ce41d7abbfbe2a980e.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    f3aaa5db07b2bc5ccd704010e9395191

    SHA1

    4f90823894c076c0b004f7193d213f8730ff2001

    SHA256

    e68089daf6d37a26a713aac2bece89a9cb6850670feea70dd9ea55c8d1c8023a

    SHA512

    6d975b50c4871423b2e49d77cf418ef03ef0cbfe599bba07878ef9c9345ec46e4f8fa99e16cc6d37297caafde52585fc920439716cd9edb81efb975b8cc80856

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    6KB

    MD5

    6362c9882664d128ccf73f75ecd23525

    SHA1

    4d1c6478e812d09159fe3c3cf214f728917708fa

    SHA256

    4289359721b8a10ba2468b2cd1092f5290cf5a0c22c1a508afd7c1040ac24269

    SHA512

    2af47caf33a3ebe1e18dd27f6c62be5c046be80b16e86bfeb3e176ae1a2c8e485986b3628967c61d32ffa5dfa6f9fa624ea3f0320a471a54e53abcbba32afb9a

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    dacb6585945f122479284b129f7de020

    SHA1

    a2543e0de68a8e837a0f7601370fc66d9ef5dc17

    SHA256

    e4f38da5c38b343a8c2862195f5fae99399c9de456f8a0953971d6efa525dfeb

    SHA512

    6411e26e5eb74537ee7b94f848b11d4544437067bb42e9e031532d188447760dde018fb9d2f74f188fa00152b2485dd7bf63679133ab83079d5c0b86e2df1c9c

    Download Submit