Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

e29371ada1...89.exe

windows7-x64

8

e29371ada1...89.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    183s
  • max time network
    193s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/12/2023, 12:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e29371ada1e75243c26a4c14c30b1ee574c492def3f1715bc663c1053f6a0589.exe

  • Size

    4.3MB

  • MD5

    ded4f5d3924cdd08638eb60500c3b8d6

  • SHA1

    e45c66554113a2adb937b7a90c7ff585164c51ba

  • SHA256

    e29371ada1e75243c26a4c14c30b1ee574c492def3f1715bc663c1053f6a0589

  • SHA512

    876525d29bbabb39bf60c5cf79fee13a58572ec592e3d8f675e233f75ca05554d51af4ac22cf051c7229b556da26950677c4e684fe11ed4c61681c1159f1c7f4

  • SSDEEP

    49152:8MLPIdiWU/o5LcUekfbj+whN5+r5u8QeKxFOJxdb4vZKVA:JLPIAN/nUeKbj+UmKdzOJDb4v+A

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e29371ada1e75243c26a4c14c30b1ee574c492def3f1715bc663c1053f6a0589.exe
    "C:\Users\Admin\AppData\Local\Temp\e29371ada1e75243c26a4c14c30b1ee574c492def3f1715bc663c1053f6a0589.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    2KB

    MD5

    a842d4ab2865dc6fd2cf2535aa24832f

    SHA1

    17381ac7ff9f85fb86bc31666e5b7c124a9b920c

    SHA256

    921d71368f9a5457690cd8503b26603a6a9376fd3c71eb72f77639ba1b62daef

    SHA512

    5bacb8cb75f0b766ee2217286ed628b4c8a018b918e54b2e12d58ed1c3c85b55950b72e69ffd8438b26131cbe1143556df3cef109dd55817595764d9546b7a6e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    ee95d9c7972163a014251b59b4017f9e

    SHA1

    5130a1b6e1c3f54ed62b37d1498ea8731a99554f

    SHA256

    103d71688b934c62a6a9b01f773f93bce7cbe67024fe0acfd5044db7ccebdf74

    SHA512

    737a57fe8a73dcf959ab557ed5d6a0bf9330acb9e39eb2bbbb3317feb98f7e4a591f19c33b48da16d7bd39574a065fb6aafd0f076e1faa9673e4240473a01701

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    285268967d60c164265f7ac06b5f8f76

    SHA1

    a651cfbd63d1b375b99e0aeeb1405f50dfc086c2

    SHA256

    06e9d72c2ae7a1a12d6c2ea52b546c4b7ee4e15297f40f767ec04e60f7d0b722

    SHA512

    897d22beb1facdfb3a2777a3282e07a621b57a754a65da8c1acada60e80037a5e2bf7e47ba60e72abc8fb2eeac64ef8c36073c10af2e79be31e4a91bdca67133

    Download Submit