Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
4Static
static
3NotePerfor...5].exe
windows11-21h2-x64
4$3/VST Sup...32.dll
windows11-21h2-x64
3$3/VST Sup...64.dll
windows11-21h2-x64
1$COMMONFIL...64.dll
windows11-21h2-x64
1$PLUGINSDI...ns.dll
windows11-21h2-x64
3$PLUGINSDI...em.dll
windows11-21h2-x64
3$PROGRAMFI...32.dll
windows11-21h2-x64
3$PROGRAMFI...32.dll
windows11-21h2-x64
3$PROGRAMFI...64.dll
windows11-21h2-x64
1$_29_/VSTP...32.dll
windows11-21h2-x64
3$_29_/VSTP...64.dll
windows11-21h2-x64
1Analysis
-
max time kernel
118s -
max time network
154s -
platform
windows11-21h2_x64 -
resource
win11-20231215-en -
resource tags
arch:x64arch:x86image:win11-20231215-enlocale:en-usos:windows11-21h2-x64system -
submitted
25/01/2024, 23:36
Static task
static1
Behavioral task
behavioral1
Sample
NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe
Resource
win11-20231215-en
Behavioral task
behavioral2
Sample
$3/VST Support/NotePerformer32.dll
Resource
win11-20231215-en
Behavioral task
behavioral3
Sample
$3/VST Support/NotePerformer64.dll
Resource
win11-20231215-en
Behavioral task
behavioral4
Sample
$COMMONFILES64/VST2/NotePerformer64.dll
Resource
win11-20231215-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win11-20231215-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win11-20231215-en
Behavioral task
behavioral7
Sample
$PROGRAMFILES/Avid/VSTPlugins/NotePerformer32.dll
Resource
win11-20231215-en
Behavioral task
behavioral8
Sample
$PROGRAMFILES/Sibelius Software/VSTPlugins/NotePerformer32.dll
Resource
win11-20231222-en
Behavioral task
behavioral9
Sample
$PROGRAMFILES64/Avid/VSTPlugins/NotePerformer64.dll
Resource
win11-20231215-en
Behavioral task
behavioral10
Sample
$_29_/VSTPlugins 32-bit (x86)/NotePerformer32.dll
Resource
win11-20231222-en
Behavioral task
behavioral11
Sample
$_29_/VSTPlugins 64-bit/NotePerformer64.dll
Resource
win11-20231215-en
General
-
Target
NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe
-
Size
659.3MB
-
MD5
24c04d36dd7733c3119c3d49b062f127
-
SHA1
c85150b3ab9f53a8d5da4761f7f5dbcab59ef6cb
-
SHA256
cc113937163765301a8ff0ba15638e3b56db08f48f6a535b2e60f7c47a4e7070
-
SHA512
523e700be2fd80849726c4263dc4f8b4356faf88c62f3472c5efae8fe7cfe48698123517dc479340def81b8d3be08263822d02ddd02a51bfb37812f64de200fd
-
SSDEEP
12582912:dPbYKJQ40ARixvzW5dfMqRTq+GyLMRlCHMjctQ+0fUSijc/XC/6XRUpDo5d4v3WB:dPbYKCtARix7MdfLGylHectKfUZjEXCE
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
pid Process 2752 NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
11KB
MD53c795e8d45946e7bb723da51273cc66c
SHA19ec19352414b6cd56e00b331c5ede23b78d683e5
SHA256c94b0f1608fb41e712e153d8f9238b1f5116a336fa77adb00f2c8be0278a85b3
SHA512d8446afb1a723c5759fba192272bf07d6c168dceb690992911170d0a4fa509ad2a11ab8c8c67ca58ef1e3cdbd4b2259f61bf561ce82e4605557dd6d9c375cc46