caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

8

dridex

windows10-2004-x64

Sharing

General

Target

caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
Size

72KB
Sample

220925-hwkbdaehhm
MD5

e0770f68d015a398c13d8918a6751aa3
SHA1

7d7874784b9a2fe223531bac40d400e1d5bf8f8f
SHA256

caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
SHA512

6555e264fd66f551f285a67e8383c4552e0be54442f619870fc79447a42cd4da4b9313811683a74c46d969bb2b668936045d68f16f4ed58cd7eba2106cb49b39
SSDEEP

1536:qFiusdglLI8cH+9g0FDDZtFMfav7V5F5erqjzssdQLXKvhCj18n:qsusdBBH+9g4mC7V5F5/zssdhsJ8n

Score

10^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
- Size
  
  72KB
- MD5
  
  e0770f68d015a398c13d8918a6751aa3
- SHA1
  
  7d7874784b9a2fe223531bac40d400e1d5bf8f8f
- SHA256
  
  caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
- SHA512
  
  6555e264fd66f551f285a67e8383c4552e0be54442f619870fc79447a42cd4da4b9313811683a74c46d969bb2b668936045d68f16f4ed58cd7eba2106cb49b39
- SSDEEP
  
  1536:qFiusdglLI8cH+9g0FDDZtFMfav7V5F5erqjzssdQLXKvhCj18n:qsusdBBH+9g4mC7V5F5/zssdhsJ8n
Score

10^/10

persistence upx
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Downloads MZ/PE file
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy