Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

3

NotePerfor...5].exe

windows11-21h2-x64

4

$3/VST Sup...32.dll

windows11-21h2-x64

3

$3/VST Sup...64.dll

windows11-21h2-x64

1

$COMMONFIL...64.dll

windows11-21h2-x64

1

$PLUGINSDI...ns.dll

windows11-21h2-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PROGRAMFI...32.dll

windows11-21h2-x64

3

$PROGRAMFI...32.dll

windows11-21h2-x64

3

$PROGRAMFI...64.dll

windows11-21h2-x64

1

$_29_/VSTP...32.dll

windows11-21h2-x64

3

$_29_/VSTP...64.dll

windows11-21h2-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    154s
  • platform
    windows11-21h2_x64
  • resource
    win11-20231215-en
  • resource tags

    arch:x64arch:x86image:win11-20231215-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    25/01/2024, 23:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe

  • Size

    659.3MB

  • MD5

    24c04d36dd7733c3119c3d49b062f127

  • SHA1

    c85150b3ab9f53a8d5da4761f7f5dbcab59ef6cb

  • SHA256

    cc113937163765301a8ff0ba15638e3b56db08f48f6a535b2e60f7c47a4e7070

  • SHA512

    523e700be2fd80849726c4263dc4f8b4356faf88c62f3472c5efae8fe7cfe48698123517dc479340def81b8d3be08263822d02ddd02a51bfb37812f64de200fd

  • SSDEEP

    12582912:dPbYKJQ40ARixvzW5dfMqRTq+GyLMRlCHMjctQ+0fUSijc/XC/6XRUpDo5d4v3WB:dPbYKCtARix7MdfLGylHectKfUZjEXCE

Score
4/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe
    "C:\Users\Admin\AppData\Local\Temp\NotePerformer-Installer-3.3.2 [Ievgen Suiunov ERD3IAJH35].exe"
    1⤵
    • Loads dropped DLL
    PID:2752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsi26DD.tmp\System.dll
    Filesize

    11KB

    MD5

    3c795e8d45946e7bb723da51273cc66c

    SHA1

    9ec19352414b6cd56e00b331c5ede23b78d683e5

    SHA256

    c94b0f1608fb41e712e153d8f9238b1f5116a336fa77adb00f2c8be0278a85b3

    SHA512

    d8446afb1a723c5759fba192272bf07d6c168dceb690992911170d0a4fa509ad2a11ab8c8c67ca58ef1e3cdbd4b2259f61bf561ce82e4605557dd6d9c375cc46

    Download Submit