06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

06f5a82e39...0c.exe

windows7-x64

06f5a82e39...0c.exe

windows10-2004-x64

8

Sharing

General

Target

06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c
Size

1.1MB
Sample

221002-fm7n7sahaj
MD5

732642d91b8fcb116b053152accadf6f
SHA1

17871feee8f967a7d1d9a43dea3bec8f83f38de3
SHA256

06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c
SHA512

d3bb7a3f23663fa2065bd79b31af946966aa2559691099fe5383232f0a5857a1625df2f0ad876a86048f6e1c407ca5f715229e96029858ce9487c6474ed69832
SSDEEP

24576:LiM5uIshBc6ReEJwdQx5L9MFy75C7HMIPga:xuj06wdU9MZMQ

Score

10^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c
- Size
  
  1.1MB
- MD5
  
  732642d91b8fcb116b053152accadf6f
- SHA1
  
  17871feee8f967a7d1d9a43dea3bec8f83f38de3
- SHA256
  
  06f5a82e39012ff2b5862fb7037df8178b734c462d74e036ed1beb3951ea780c
- SHA512
  
  d3bb7a3f23663fa2065bd79b31af946966aa2559691099fe5383232f0a5857a1625df2f0ad876a86048f6e1c407ca5f715229e96029858ce9487c6474ed69832
- SSDEEP
  
  24576:LiM5uIshBc6ReEJwdQx5L9MFy75C7HMIPga:xuj06wdU9MZMQ
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy