Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

CoutX-Setup.exe

windows10-2004-x64

7

CoutX-Setup.exe

windows10-1703-x64

7

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows10-1703-x64

3

$PLUGINSDI...nu.dll

windows10-1703-x64

3

$PLUGINSDI...nu.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

CoutX.exe

windows10-2004-x64

6

CoutX.exe

windows10-1703-x64

6

MSVCP140.dll

windows10-2004-x64

1

MSVCP140.dll

windows10-1703-x64

1

VCRUNTIME140.dll

windows7-x64

1

VCRUNTIME140.dll

windows10-1703-x64

1

VCRUNTIME140_1.dll

windows11-21h2-x64

1

VCRUNTIME140_1.dll

windows10-1703-x64

1

tools/CoutX.bat

windows10-1703-x64

9

tools/CoutX.bat

windows10-1703-x64

9

tools/MinSudo.exe

windows10-2004-x64

1

tools/MinSudo.exe

windows10-1703-x64

1

tools/SetT...on.exe

windows10-1703-x64

1

tools/SetT...on.exe

windows10-1703-x64

1

tools/nvid...or.exe

windows10-2004-x64

1

tools/nvid...or.exe

windows10-1703-x64

1

Analysis

  • max time kernel
    132s
  • max time network
    101s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/06/2024, 06:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CoutX-Setup.exe

  • Size

    901KB

  • MD5

    77ecac00dde81444199df34bcaa6bafb

  • SHA1

    78e292fbd1ad9d2e8c78b3d75013b4ea1a09d3b8

  • SHA256

    6273033dde31d56147096d50f235da716b49878064b94a338f0b8c9d9bd67546

  • SHA512

    521e731852d70b74c8bcfb4d18eeb10e2e5478001c51e41f33e3b46af9d844014dac63e0be33c8be4488377d9f96765017b6769b2059b26b827839a3b3f12578

  • SSDEEP

    24576:kPdPr0nvzHdcdTDbQedZfnff8pkhNNtNoX:sPMz9SH8erfffkgNNC

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 2 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\CoutX-Setup.exe
    "C:\Users\Admin\AppData\Local\Temp\CoutX-Setup.exe"
    1⤵
    • Loads dropped DLL
    PID:32

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsv494F.tmp\InstallOptions.dll
    Filesize

    15KB

    MD5

    d095b082b7c5ba4665d40d9c5042af6d

    SHA1

    2220277304af105ca6c56219f56f04e894b28d27

    SHA256

    b2091205e225fc07daf1101218c64ce62a4690cacac9c3d0644d12e93e4c213c

    SHA512

    61fb5cf84028437d8a63d0fda53d9fe0f521d8fe04e96853a5b7a22050c4c4fb5528ff0cdbb3ae6bc74a5033563fc417fc7537e4778227c9fd6633ae844c47d9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\nsv494F.tmp\ioSpecial.ini
    Filesize

    1KB

    MD5

    71cbd6830bb2e2f276e37531d0ca958f

    SHA1

    79a5563b67528e266f59c8fba4b9eef616bd6f12

    SHA256

    e777af2de549d3e2053d58d0ba2ffb458964e9b4f33993ec0320c43f48d5528d

    SHA512

    6d0b6fe0f2ee4290b647a6420289c35ceb739f90cb20a8cbecd9d09665e70d3acf2600355b0be662eda9c20c7588b416f877cc2cb7a3fbf936d873a2d547d2b4

    Download Submit