Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

0cfd202d5a...ea.exe

windows7-x64

1

0cfd202d5a...ea.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231127-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/11/2023, 23:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cfd202d5ad56c634502841f24cd002f2d820096ba445eea275a0f0f085f3aea.exe

  • Size

    4.7MB

  • MD5

    b41c4cb595ec438a70a9aad8650fff19

  • SHA1

    299556f5082ba71816281ad4607b0de24d9dcdda

  • SHA256

    0cfd202d5ad56c634502841f24cd002f2d820096ba445eea275a0f0f085f3aea

  • SHA512

    6d822e96560775b402d4c3f9310083f6986d2209dcf87b4ee4fdcc438313cde79802f0d962e9b10a153d2534ed431e475f2686e44bc5e9c224e7a9fafa5a22a5

  • SSDEEP

    98304:Q2XeHdZChmK2dCzyicP21FqKdzOJDb4v+A:EdZ0+ilpwN0v+A

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0cfd202d5ad56c634502841f24cd002f2d820096ba445eea275a0f0f085f3aea.exe
    "C:\Users\Admin\AppData\Local\Temp\0cfd202d5ad56c634502841f24cd002f2d820096ba445eea275a0f0f085f3aea.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    150aee68bcabbfd5cd2c1f3b41c5f711

    SHA1

    888425e3c8174a67c8cb76e8fa4efd5d8c12cecc

    SHA256

    9ec9279c9e533fe61ad2f3d548fb525abf1b8b38082090eba30e6110ffe90782

    SHA512

    780e05e0c6f6664676928eb8a8c9e12d66991fca5e723c6c8078f46567239583151e46190970423389ad8cf773fc18d65b9e44aa17909afe3a08ccc5fa529403

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    b755fe8152a041f249703dc7c2f1b917

    SHA1

    3f9ceee4602bbf6cc72f5acd9324c155c6149ee8

    SHA256

    51c3f39e2c8cd77410053a68f59be87445b213e9b29ce127252313851d5f731b

    SHA512

    e7153123036e3b7e29222d954e1ae11e2b0e7b99ec5cc8dce54148f7264de07faa04898f2c8591e69dc245fd1029566524ecd6cfdbbe8aa8fc419f42fd33ae6c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    fbb46c53a284c34fb9090e402e89490a

    SHA1

    cca3b6cef98d403b99aa85dd662d5ac2d1ac56a1

    SHA256

    24e97acf5846b43247ef8b9cbc08a7e68d8c6895411f243229e5cacb3272d572

    SHA512

    8160793b75f871f75c64b36774f910e4497fb996c28d18cc6a68938c31163679aaa40bbd1c8b0470271c07cfedd74a967c25d5d7ee7b00bfe77301dbdde46aed

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    b8789eb016ae83e931dfa9a73c248e0b

    SHA1

    ebe0d3353739a451153fa12f98521988c9636be1

    SHA256

    461beee45cae90b6d7caff12ec78ef0a1237f141a9c358a14ac197fd9043b9cf

    SHA512

    1c4decb3b398d06e52309f5a327f6ada4a6fa25f8d0915630f5f327fa538bd071e63d51dc65753b452610565f843b56c527d2daac8d58264ae8a961dd4856bc2

    Download Submit