Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b34bd239b5...37.exe

windows7-x64

8

b34bd239b5...37.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/06/2024, 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe

  • Size

    2.3MB

  • MD5

    0b7a911a234b5ad0745c172f5717358a

  • SHA1

    c5556f0dc462f27179fa6628da0d940d192e202a

  • SHA256

    b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237

  • SHA512

    cd1c84043737883184a62bf81d5caa8da717046a8575acb8d00e93f93fa57bc5165769eff39a415bd8d3c315e634534e1520fde49e74ca5475b526d62ff10145

  • SSDEEP

    49152:InkfmMp62cQLNe/S0iCO4ZSvS/qii+r5u8Qex:I062RLg/SZCO4IEK4

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Loads dropped DLL 2 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe
    "C:\Users\Admin\AppData\Local\Temp\b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    4KB

    MD5

    7f6444c701fe134a7283a45ceaf205a4

    SHA1

    e0ed11cb657c5252e4b4eed5062d885c6e862488

    SHA256

    9ad71506fcd9110d46d64794b327e3b669ff2cb58f959fce392c9c6b35019919

    SHA512

    77a9079bb8d6db4333007666fcc73655369792d84f70fd0ba19f9ebe5380efbf0a78561b41e179b13d7617b0c79b3a159019d6cfb6536f76e957fd9460898d85

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    c446167ab12ef0aace0868a47a03476d

    SHA1

    b9491acf543f3e06cc25d1b3d8dc4d9e6227f48c

    SHA256

    774a936afa164f0badcfac82a60b08c66a28c9bf26ff13a1684a4080fa9196b4

    SHA512

    07cb6b9b5780a88a03af46e0c53c40949271b89d7630751fef4e6e3e7ec2ae46a4f490c75a4ba6b6d7ee369656b74cfe6f8361d175762406405c64bcc733e63d

    Download Submit