451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

451007c29a...21.exe

windows7-x64

451007c29a...21.exe

windows10-2004-x64

Sharing

General

Target

451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821
Size

417KB
Sample

221012-v6c19sdfgj
MD5

68f6ce1d165b8c1ee9050a71dc8ba1eb
SHA1

2be3af62f96f6e572f0cb2185d99668098071af5
SHA256

451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821
SHA512

3bcfa67295d71bedb3746211f0fb920b0127b91c10df7ebec2a52df602018b85cefe731329d553239d71cfe7084cee3502773affea5c2914a141e5c17862057c
SSDEEP

1536:NsDGQLphzQHUyRPkN2HpuP7RIPe5HQVgd54v:FQL/bCrWIPe5HL7

Score

10^/10

evasion persistence

Static task

static1

Behavioral task

behavioral1

Sample

451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821.exe

Resource

win7-20220901-en

evasion persistence

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821.exe

Resource

win10v2004-20220901-en

evasion persistence

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821
- Size
  
  417KB
- MD5
  
  68f6ce1d165b8c1ee9050a71dc8ba1eb
- SHA1
  
  2be3af62f96f6e572f0cb2185d99668098071af5
- SHA256
  
  451007c29a38ac69020b2c5c663923976f063f62c646c871b1ed2df00ffdc821
- SHA512
  
  3bcfa67295d71bedb3746211f0fb920b0127b91c10df7ebec2a52df602018b85cefe731329d553239d71cfe7084cee3502773affea5c2914a141e5c17862057c
- SSDEEP
  
  1536:NsDGQLphzQHUyRPkN2HpuP7RIPe5HQVgd54v:FQL/bCrWIPe5HL7
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence

© 2018-2025

Terms | Privacy