6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

6452568bc1...8e.exe

windows7-x64

9

6452568bc1...8e.exe

windows10-2004-x64

9

Sharing

General

Target

6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e
Size

1.1MB
Sample

221021-fbtm7scec3
MD5

44936d39dcca76d5b35e8c33f0e07119
SHA1

f81321b0fab6e7738df59e5ef56aa284121f2fbb
SHA256

6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e
SHA512

c4a9f2d022c85c0b57985c32c31d75e544355e6a858e66a58be7c0bb8452c2ad29dacf4ee062e29f199a673e61b0e4f081711416dce6f845832578678eaa7c14
SSDEEP

24576:TXQKznLsKA4bTlV9vwSfeqsxC3oh4Rj5xrYIKsIdHm:nFTl7vyYUQ9KQ

Score

9^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e.exe

Resource

win7-20220812-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e
- Size
  
  1.1MB
- MD5
  
  44936d39dcca76d5b35e8c33f0e07119
- SHA1
  
  f81321b0fab6e7738df59e5ef56aa284121f2fbb
- SHA256
  
  6452568bc14baef7905ba932f700d6d2e5f5718173e36be6329ffeb56a8da68e
- SHA512
  
  c4a9f2d022c85c0b57985c32c31d75e544355e6a858e66a58be7c0bb8452c2ad29dacf4ee062e29f199a673e61b0e4f081711416dce6f845832578678eaa7c14
- SSDEEP
  
  24576:TXQKznLsKA4bTlV9vwSfeqsxC3oh4Rj5xrYIKsIdHm:nFTl7vyYUQ9KQ
Score

9^/10

persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy