Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b6a9c3c716...d1.exe

windows7-x64

8

b6a9c3c716...d1.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/01/2024, 11:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b6a9c3c716da6acc577f584e738ebed02c6192e644756249dc18979a392880d1.exe

  • Size

    4.3MB

  • MD5

    f3d2dbea692154b6a2c4daba70c9c4cd

  • SHA1

    d89f74bdcd61ce83d457d73d5096ed0e9328edc8

  • SHA256

    b6a9c3c716da6acc577f584e738ebed02c6192e644756249dc18979a392880d1

  • SHA512

    84a7b2cdb8a43b188d583295fbb034b99357b1fba42b2aea66a9593cfe926c699f08b7125ce3bd77307573af6c0fe3adf843bda2a179a1b04272579659c8678e

  • SSDEEP

    49152:qMLPIdiWU/o5LcUekfbj+whw5+r5u8QeKxFOJxdb4vZKVB:bLPIAN/nUeKbj+UFKdzOJDb4v+B

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b6a9c3c716da6acc577f584e738ebed02c6192e644756249dc18979a392880d1.exe
    "C:\Users\Admin\AppData\Local\Temp\b6a9c3c716da6acc577f584e738ebed02c6192e644756249dc18979a392880d1.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    a880973e2636e1c07f9b975fb7b64f32

    SHA1

    3b2bc527b642caa5954ee70b2f9e839be2e1130d

    SHA256

    44ea43f8c13ad5f17bad02d4f09568685651d32cb0af48db0c8817e667a41304

    SHA512

    076bd35ab032d40f793b574bced803b0c869154b48d06e964690dc7fda953dd3feef0e3c732785bd8dd15f1018c650a819b0339cad6641c2298beb0a06a6b0aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    b7ccbc9b929799fa1457e3030ec6900c

    SHA1

    170de4a31aacb72205f10895516ac0b18baf218a

    SHA256

    04299d3a34315c9bb48859418a9ce289857dade74462e45eeb28a1c5f400f328

    SHA512

    ed0c708090f7366058b9b7cb9ec1e163be203d8da384a480f70b592cdb9cf3c5f7a4761c02cf33ff212c2ce826acd29e87e21e5e6fcb9d5ef77181abfe75120f

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    f111353ccf906565c76e610be89bb552

    SHA1

    618a06b8ba24862d996b1917a16b087c48d57885

    SHA256

    c817d6b4f44d580a19e58ab1c4e2d0ca33b063db79086b05a1336e98882c6f13

    SHA512

    01a43743a3417f9aea239047a121a7795bff208bb4b4a856b463b615d553271f6d6ea89964b03c9aa6106f09f8f93f280a0267525a044cf422e478236ffdb74a

    Download Submit