Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

6929464b0a...bb.exe

windows7-x64

8

6929464b0a...bb.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    03/05/2024, 08:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6929464b0ac7b6bc77b52a9e532ee47f1640db45f1dd4167ccf24e8c301ec4bb.exe

  • Size

    2.3MB

  • MD5

    26ae8865f75ae782ce13bcc5660204f4

  • SHA1

    7512cc7bcfdcbf8fe0eec4549c9c15d916cfdafa

  • SHA256

    6929464b0ac7b6bc77b52a9e532ee47f1640db45f1dd4167ccf24e8c301ec4bb

  • SHA512

    c37ae66df32ba67ec832d018937d862c81be2fd1eddba6d5871d58e0184dc584d39766dd7921379550c024d2bc672da5a8014caa5463b5c15b53ed49966de775

  • SSDEEP

    49152:x4DE5KoEdy87AfT4COFCeBqP+r5u8QeM2d:0tdy87Af8COFnxKj

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6929464b0ac7b6bc77b52a9e532ee47f1640db45f1dd4167ccf24e8c301ec4bb.exe
    "C:\Users\Admin\AppData\Local\Temp\6929464b0ac7b6bc77b52a9e532ee47f1640db45f1dd4167ccf24e8c301ec4bb.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1876

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    f4082d6ca82aaa4240711df52dcbf5c0

    SHA1

    97305e73f0d454a41a629f7dbe077b49b4b5e3f9

    SHA256

    1bf7c967bfd230ad4cf220374a9c5ef00a58e5a3cc6a69d677a720b93d8c8f0e

    SHA512

    25e1c2960437c89c2325f35fa2dc25b38131e09c25b6b9f11957cf71bdac4dc574ea61fd6220a93b969643a7aad28fc62c6d00cb59099b3f7858e24d53fd631b

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    6443121bce22bdfad8698e78d61bae84

    SHA1

    e12831bfd3f8dd7072e34685aa7cbd349a6e017e

    SHA256

    30627231157eaf662c6bb2782056f58f135237f10cbdafa74cc85a7cc590fdff

    SHA512

    d76e7fd07b83e5aef74ee0547e873b91c44a640b44155e516afd31b36216b8c19a2f7c9aca54dd6d7b40cead185d320e1932023105f478e598969b554ac77abd

    Download Submit