Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b3a01600ef...c6.exe

windows7-x64

8

b3a01600ef...c6.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/01/2024, 17:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe

  • Size

    4.3MB

  • MD5

    0e08d3c8723de65182d2ac8df8f93f20

  • SHA1

    0a4b0c5d87b92960e4371247b9b850db457872d1

  • SHA256

    b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6

  • SHA512

    61fbb27c88a15bf0d4f5f69e8c671e23a7ff909901b9b6d0b7e9cb5ac3335a7933b1d34bf70e4b93f51ae5281c3882c4c69627f8957c28f516e144b31315105f

  • SSDEEP

    49152:8MLPIdiWU/o5LcUekfbj+whN5+r5u8QeKxFOJxdb4vZKVA:JLPIAN/nUeKbj+UmKdzOJDb4v+A

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe
    "C:\Users\Admin\AppData\Local\Temp\b3a01600ef9d8c6d3983abccda1511149f9c518b4ec3d69aa9ae763d7fa998c6.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    0e9a714ab938b3130ea90e89cea62002

    SHA1

    57142279b21cddd100461dbce1222d1fb32a81b8

    SHA256

    4cc0a086bc24c126ef1436bbfbfe2eca74ff3443ed34673e3e6c1850358d674e

    SHA512

    38001dff7337cccf0108922e9157a5f72fd844cadcd5950ff51cfb3ae02577ee651c1f02a1e7f2da9833183fb5bc0b69927d8a20997eae8a53c67c60a10be985

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    ba3f0cd735ccaed1d427933398db160d

    SHA1

    394c57667aba48304a6709bac0197c0d08477c87

    SHA256

    8d71bdb217e7f314b5c041191b8e09ff95a4116aa3275028362cd58a1f189529

    SHA512

    aee0fcc87cba64d767a40a295afc01c45c71a0babd11481396121c1d2861bb5a694967e0ebe44f155b34df1b065834a0bf19904bfa59d74f5fb660dd2ddfd797

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    c493d22de1615ce4fc27126502e9e09d

    SHA1

    2458f4e6c6940b59cff1d207815b41cb7f5f3a85

    SHA256

    28edf845d332ef73a97e7cd1e5080cb03bafdadcb5d2f0d10f8c339eb85964bb

    SHA512

    0047e24fd1f3a51d041b22f3f5d9cb7e2da5f73a82474f143b76b40e6b51bcfd8642510cd6b8bb0438c81211288f05b23479ce8a96e58744f09fa78666145e01

    Download Submit