49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

49c426d150...6a.exe

windows7-x64

7

49c426d150...6a.exe

windows10-2004-x64

1

Sharing

General

Target

49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a
Size

86KB
Sample

221011-w2y9dahbh6
MD5

11c9f3dbe4bed32a36e34cbbe57d3840
SHA1

9328ee911e8eedefc4ea4d63e5f68d5afaa6a43a
SHA256

49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a
SHA512

4596b8a86e8c4a9bb5046f0ca47a0b47e69d092ae54b5be7fd618e47809fb5918badbf11531ed7f2ee2b6cfdb19cbfc2509e3433ce4f973ef5d1afdb890762ba
SSDEEP

768:N/IwI4gTtUReg/UXssPzfQE6rrDNswNX9pQUnbmhGOOOOOOOaHaJB4VQgvBAfBKb:ed4gTtUMgQzfWrrDNhLGKYBuOw

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a
- Size
  
  86KB
- MD5
  
  11c9f3dbe4bed32a36e34cbbe57d3840
- SHA1
  
  9328ee911e8eedefc4ea4d63e5f68d5afaa6a43a
- SHA256
  
  49c426d1508fbe79f698a05763ee38164229229ccca6994d51cff110e979df6a
- SHA512
  
  4596b8a86e8c4a9bb5046f0ca47a0b47e69d092ae54b5be7fd618e47809fb5918badbf11531ed7f2ee2b6cfdb19cbfc2509e3433ce4f973ef5d1afdb890762ba
- SSDEEP
  
  768:N/IwI4gTtUReg/UXssPzfQE6rrDNswNX9pQUnbmhGOOOOOOOaHaJB4VQgvBAfBKb:ed4gTtUMgQzfWrrDNhLGKYBuOw
Score

7^/10
- Drops startup file
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy