766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

766faa517a...65.exe

windows7-x64

8

766faa517a...65.exe

windows10-2004-x64

8

Sharing

General

Target

766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965
Size

400KB
Sample

221019-rskmeacbgm
MD5

a19d9fb62c7955caa9d284e66a6f07f0
SHA1

b28a0e62325500a2a438eeb23159c3995e7be479
SHA256

766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965
SHA512

59ce44fb0e0c167cd7df6618ab7cf81661c911bed91896600de588e237dea7939a1337cd5e1ae29ebe6286825a0b03d041a4dbc2a129a48959e4df642632f369
SSDEEP

12288:j6Wq4aaE6KwyF5L0Y2D1PqLEr7xznGa3c2y:JthEVaPqLAzTs2y

Score

8^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965
- Size
  
  400KB
- MD5
  
  a19d9fb62c7955caa9d284e66a6f07f0
- SHA1
  
  b28a0e62325500a2a438eeb23159c3995e7be479
- SHA256
  
  766faa517a84ec9b4d84e4663256247873ecc3cb3d56256df61e14eb594e9965
- SHA512
  
  59ce44fb0e0c167cd7df6618ab7cf81661c911bed91896600de588e237dea7939a1337cd5e1ae29ebe6286825a0b03d041a4dbc2a129a48959e4df642632f369
- SSDEEP
  
  12288:j6Wq4aaE6KwyF5L0Y2D1PqLEr7xznGa3c2y:JthEVaPqLAzTs2y
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy