ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

ee1d5a5677...7a.exe

windows7-x64

ee1d5a5677...7a.exe

windows10-2004-x64

Sharing

General

Target

ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a
Size

78KB
Sample

221020-xlx7taaea8
MD5

a05860a968b1b64c91eb8f8f0576f1b0
SHA1

a42e3fce0cf76d49635b3e0c1183cd0e7ef17f90
SHA256

ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a
SHA512

c3e1dfad8a51020676e1178289ce484988a12dfd1b5daed2b2c08ac3bcb3e5b17fc7a9c9fd2eabbfe5fb704bde5b98b08f09e5113798227bf91ae632936fc847
SSDEEP

768:RpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhI:7eTce/U/hKYuKPHisKldhI

Score

10^/10

evasion persistence

Static task

static1

Behavioral task

behavioral1

Sample

ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a.exe

Resource

win7-20220812-en

evasion persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a
- Size
  
  78KB
- MD5
  
  a05860a968b1b64c91eb8f8f0576f1b0
- SHA1
  
  a42e3fce0cf76d49635b3e0c1183cd0e7ef17f90
- SHA256
  
  ee1d5a56770e3d0687c644141a936c72ab7cdee666e4995707268bcaf359477a
- SHA512
  
  c3e1dfad8a51020676e1178289ce484988a12dfd1b5daed2b2c08ac3bcb3e5b17fc7a9c9fd2eabbfe5fb704bde5b98b08f09e5113798227bf91ae632936fc847
- SSDEEP
  
  768:RpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhI:7eTce/U/hKYuKPHisKldhI
Score

10^/10

evasion persistence
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

© 2018-2025

Terms | Privacy