eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

eafeaa0fd6...bb.exe

windows7-x64

8

eafeaa0fd6...bb.exe

windows10-2004-x64

7

Sharing

General

Target

eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb
Size

37KB
Sample

220919-jvxqrafcb2
MD5

03cd6b1b551f243fa92a816c1e6b3c87
SHA1

3bd4310b99d2114549b99809b2020848dc7ad43f
SHA256

eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb
SHA512

6e24b62ac77e3ac39b0f19c643223ffef46f59cdff93e6b774990648113217d28f86d336bffba416f05cf8ad2a3b40996c1ee0e1499a45ed8eea5c2c7c3941e0
SSDEEP

768:C42I2yadMFCI342H0QNzR8AvNL9U8C4jhB1IgyleJ7mSwlNLjvLOwvf/8WKNQdT:YgCIxUQtR8+NL9U8JjpyY1mfjjvLfMWz

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb.exe

Resource

win7-20220812-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb
- Size
  
  37KB
- MD5
  
  03cd6b1b551f243fa92a816c1e6b3c87
- SHA1
  
  3bd4310b99d2114549b99809b2020848dc7ad43f
- SHA256
  
  eafeaa0fd63047cd550e138c77d3c387c154b25e7b8256e90ed9561b7e76eabb
- SHA512
  
  6e24b62ac77e3ac39b0f19c643223ffef46f59cdff93e6b774990648113217d28f86d336bffba416f05cf8ad2a3b40996c1ee0e1499a45ed8eea5c2c7c3941e0
- SSDEEP
  
  768:C42I2yadMFCI342H0QNzR8AvNL9U8C4jhB1IgyleJ7mSwlNLjvLOwvf/8WKNQdT:YgCIxUQtR8+NL9U8JjpyY1mfjjvLfMWz
Score

8^/10
- Executes dropped EXE
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.