aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

1

aa5c23bffe...57.exe

windows7-x64

9

aa5c23bffe...57.exe

windows10-2004-x64

9

Sharing

General

Target

aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557
Size

107KB
Sample

221012-wgnbdaecam
MD5

663d6f1455e3eeac90b58a208c3172f0
SHA1

b23639f4693e88d53d43c9869b06a3f39014ebd2
SHA256

aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557
SHA512

d892d1935a373584e585f252147a5ad99d28909e8a9c8089096f1d3bb05890e9d8061be5a2ac7c9479000cfa7147f9bac31a041a1ed4d787cb02ba55b359dc52
SSDEEP

3072:IgXdZt9P6D3XJbC1PVTMF+LGT02bVcu+HZN+p5q:Ie344hio0fbVc5HZN+p5q

Score

9^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557.exe

Resource

win7-20220812-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557
- Size
  
  107KB
- MD5
  
  663d6f1455e3eeac90b58a208c3172f0
- SHA1
  
  b23639f4693e88d53d43c9869b06a3f39014ebd2
- SHA256
  
  aa5c23bffe92e7df946e1c59423bb1e5978043d0e7e38aeb4f7ae6924b9dc557
- SHA512
  
  d892d1935a373584e585f252147a5ad99d28909e8a9c8089096f1d3bb05890e9d8061be5a2ac7c9479000cfa7147f9bac31a041a1ed4d787cb02ba55b359dc52
- SSDEEP
  
  3072:IgXdZt9P6D3XJbC1PVTMF+LGT02bVcu+HZN+p5q:Ie344hio0fbVc5HZN+p5q
Score

9^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Blocklisted process makes network request
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy