Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b34bd239b5...37.exe

windows7-x64

8

b34bd239b5...37.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/06/2024, 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe

  • Size

    2.3MB

  • MD5

    0b7a911a234b5ad0745c172f5717358a

  • SHA1

    c5556f0dc462f27179fa6628da0d940d192e202a

  • SHA256

    b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237

  • SHA512

    cd1c84043737883184a62bf81d5caa8da717046a8575acb8d00e93f93fa57bc5165769eff39a415bd8d3c315e634534e1520fde49e74ca5475b526d62ff10145

  • SSDEEP

    49152:InkfmMp62cQLNe/S0iCO4ZSvS/qii+r5u8Qex:I062RLg/SZCO4IEK4

Score
8/10

Malware Config

Signatures

  • Downloads MZ/PE file
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe
    "C:\Users\Admin\AppData\Local\Temp\b34bd239b5c4c3843396dbc08eef5e738dec3f0c1c374bac1736bf7bc6972237.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    1KB

    MD5

    65df5be3d1151010e7e6b4379a205337

    SHA1

    d0b67a6e13aed2914ab451943e22c54ae101f534

    SHA256

    2c2cebaa909c6fadcd39fd81d2f8fe3f61d7db75801eff0c340e35419c813b5a

    SHA512

    77bc76ba2d8fd27acdd5073d87532e959df89e8bb4cd60cce5a5901ddefd9f1146bc9820585043e643a68ccf56dd8f4def15ac79fd2257f2504a8cad9f946558

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\lite_installer.log
    Filesize

    5KB

    MD5

    ea64b87897af805f13295a66652c9065

    SHA1

    f461320e3a05bb670aaf204506ed783c2319598c

    SHA256

    91c57d300b95ebc2a5b479b4a0c1e7e3af397c7f6e144ebb9d5f0d4190a2684b

    SHA512

    e92d81179304de3eae34a43406ccc677b2bd2e3e51b54d92fdf1d5ef9b46c8e7b0e7b29fb2d69ae0d77f99e37913dc0b4a2219952840c535ccb59a44d4e0de42

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Yandex\ui
    Filesize

    38B

    MD5

    0fb9344df492a76afc4e8406c14ef95e

    SHA1

    c69bde5a31e9f4d9252bd2465bcd2691f886c44d

    SHA256

    987bc0279bcec1faa8a4d085e69021d1ed878407e87f458e38807127bbb6a028

    SHA512

    95ddee4d0e1009d8e22c582f99f4f38308e69aaf94805b72dd35702f418de32e52d724d484eb3dd4cf740391eb82d54c684082bd69ca573890edfd6fe8e8f9bb

    Download Submit