Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

BatiHotkey.exe

windows7-x64

3

BatiHotkey.exe

windows10-1703-x64

7

BatiHotkey.exe

windows10-2004-x64

3

BatiHotkey.exe

windows11-21h2-x64

3

Analysis

  • max time kernel
    52s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    06/08/2024, 17:05 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    BatiHotkey.exe

  • Size

    711KB

  • MD5

    37535524fdc33dc2c00621fac13cd854

  • SHA1

    b5907488b6e15d7cb846d4daab4385fa217b18a9

  • SHA256

    75702ad722cc4c3443fcef86635b0166708f35f7ee9c37344852e42bd6a53f48

  • SHA512

    409b7a091c52330399270eed76022c585efe10ab42bd96c4fcb0f18d6f4141e0bcacdab5919fc7df92b7324ad162f8f2b173fd3c8324201daaa058a74b48acdd

  • SSDEEP

    12288:YU+9H3900EJqrekLEyTYQcDL/TNuUCziP6VFGO5lrEaKYNtcBvAuvlee2NCFbLkF:YU+9XNrenyktDLdYNtcdvQNC9wHAP5c1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\BatiHotkey.exe
    "C:\Users\Admin\AppData\Local\Temp\BatiHotkey.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.