Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

39e771e9cb...9a.exe

windows7-x64

1

39e771e9cb...9a.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11/12/2023, 17:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    39e771e9cbc7e6a41c385fd0fd9f5e8b36efd1e0ad9f535017629c350d7c689a.exe

  • Size

    4.7MB

  • MD5

    7b1e09c33084bbbd4018005578f85136

  • SHA1

    c5fa6de0317ec6d2e2a8c644712639a1881d98e5

  • SHA256

    39e771e9cbc7e6a41c385fd0fd9f5e8b36efd1e0ad9f535017629c350d7c689a

  • SHA512

    921de19bea8d9814bda35070c01aa234c6da884a76d3e6d706b9fb628269671683d9cc739601b999e710a38fd418c6ff0c4d5c33ff137404f6defc0139189227

  • SSDEEP

    49152:dc2XwJXdAk1PBOldp9rEbjB/hKTYYd6zTaMubLmjVPU5+r5u8QeKxFOJxdb4vZKN:pXwJNf1pip9AbjBwsaMW6KdzOJDb4v+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\39e771e9cbc7e6a41c385fd0fd9f5e8b36efd1e0ad9f535017629c350d7c689a.exe
    "C:\Users\Admin\AppData\Local\Temp\39e771e9cbc7e6a41c385fd0fd9f5e8b36efd1e0ad9f535017629c350d7c689a.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    76133ca923d22f1ce2dc7076643409f9

    SHA1

    9454ceae71d55a88dec7f93a13305308033f3429

    SHA256

    3543f2c9ed2d1f5af79885fe2cfcc50b021674654720a8aed033eaac6a87004d

    SHA512

    2c2f590dd77eec28d83ae31686d59526c0ec936b4ec6ff967772c75f0a583c53c9cb99188135202eeea3083c4e0ce2f70a051c9c37c46d5cda8884e511f7cc1b

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    636fae14f4227d257d35bb3738c85271

    SHA1

    840d41154cf8d50062c662d150ddca467f949e8e

    SHA256

    c23217197c4c686f14a6631ed5da5e4ca11c53708655ef3b9451ef5bc94e185c

    SHA512

    d2453e8a4a29ebacabe45fe3000291cee981fd7e014064e79d0a8a1b9956e6ba899fe7e6a6c35778c031297578cbac1099d0be09bb4524aeb1866dcf9b1757b3

    Download Submit