3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3bd813b5ee...5c.msi

windows7-x64

8

3bd813b5ee...5c.msi

windows10-2004-x64

8

Sharing

General

Target

3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c
Size

108.2MB
Sample

220929-ptpxeaagh8
MD5

092cb4f416ab6b65bd04798070a73310
SHA1

58e6de1202d2ec4991a94636fc9dd86099363e34
SHA256

3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c
SHA512

b608105fa87aef1cad2bbb1231511a5af6c94f74924258174d1127f5fce9b6937905ff79a777cc1cb55fe4093c5993f53bcf2fc6a1118fd44aa50756f7ea0d4b
SSDEEP

3145728:VFEp1cAjJNOCsXvY27nm0LT419R/pt8OBp4e0/QNou:K7FfknLdTC9R/piq0

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c.msi

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c.msi

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c
- Size
  
  108.2MB
- MD5
  
  092cb4f416ab6b65bd04798070a73310
- SHA1
  
  58e6de1202d2ec4991a94636fc9dd86099363e34
- SHA256
  
  3bd813b5eef1dcf7c07c0c11985f134f507be766c0e60e7d5f9129b6356a415c
- SHA512
  
  b608105fa87aef1cad2bbb1231511a5af6c94f74924258174d1127f5fce9b6937905ff79a777cc1cb55fe4093c5993f53bcf2fc6a1118fd44aa50756f7ea0d4b
- SSDEEP
  
  3145728:VFEp1cAjJNOCsXvY27nm0LT419R/pt8OBp4e0/QNou:K7FfknLdTC9R/piq0
Score

8^/10
- Blocklisted process makes network request
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy