Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

1d08768483...b2.exe

windows7-x64

8

1d08768483...b2.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/01/2024, 15:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1d0876848323595ca31f508fceabb89cbb89389418dc6161275b750696ff0db2.exe

  • Size

    4.3MB

  • MD5

    c871ce196a4ae0c50fc9a68e8f0ac7bc

  • SHA1

    d2e6e83f32eca75bbdd782736ec1084d19ef4b9e

  • SHA256

    1d0876848323595ca31f508fceabb89cbb89389418dc6161275b750696ff0db2

  • SHA512

    78307d75377f6169c653c63b8bb405635cad54f33f6ca5d0881bc6bb4e6dbe587734c6de5fe8ed44ef77b60bea3a60b0b8514685d2237a8ffd7cbefd216e046e

  • SSDEEP

    49152:8MLPIdiWU/o5LcUekfbj+whN5+r5u8QeKxFOJxdb4vZKVA:JLPIAN/nUeKbj+UmKdzOJDb4v+A

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1d0876848323595ca31f508fceabb89cbb89389418dc6161275b750696ff0db2.exe
    "C:\Users\Admin\AppData\Local\Temp\1d0876848323595ca31f508fceabb89cbb89389418dc6161275b750696ff0db2.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2788

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    f456351a10d5eb888fd517db018990a1

    SHA1

    d0b248638f6afff289fee2ae88ac8e35ff64cbd8

    SHA256

    98862fed0f3d09cbbe6d8b16d58d5d26eeb10f36977a05990cdbe257859f9b98

    SHA512

    36756a7aacb062b4b1475ea208938e090e351dbbc74092c27251fd14537fa2e10b443879c133bbbda514494786193cec02095f85a9317a171ae1da36350579cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    55ca7a39a67dcab99b2935198f92a676

    SHA1

    571daf5da952f689e0e120147947ec25253b4278

    SHA256

    2ba5f199c9203c95fe034530573391f463066d8287bbc9ae45fce2b03812d766

    SHA512

    0aa814f54d8b4047bca2b0940b95919beed0aa8258a75da421a232b6164c5571805d0cb18c5ffb50806fc0c73c72f7c186905da7b5335e9cb881b1c0f07c1986

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    f8f1c4097076d9373f832dd78b5f3f7c

    SHA1

    ebc6c249d5924c6f3a3529df72628e4994227855

    SHA256

    22ffc93208c93fc46f2863c5198662faf2533a79a9eb29e658606bd15f695b69

    SHA512

    321cb73f48bd387f0136e5e3fb6f829cc6b73b9568a204a50c13b0c6fdf01fbd0d7b0ebd439e0e5bd3863954e313189d744204343bfd5bddafc28f9f66a5b912

    Download Submit