7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7c85b262e9...a2.exe

windows7-x64

8

7c85b262e9...a2.exe

windows10-2004-x64

8

Sharing

General

Target

7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2
Size

931KB
Sample

221125-nkxp8ade43
MD5

f21e9f0df3119f330e7bfb9128533f49
SHA1

2d701a204cecbaccc516af53eb10e446a51c039e
SHA256

7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2
SHA512

0a4d2261d0b74dc5bea1e784b8f7761202e90dae5fa385917471051e8a4e1d0e32d79a8dc8b905bae4c12a33b17a83a8da2336d87c6017d34df46af1168db1ad
SSDEEP

24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2
- Size
  
  931KB
- MD5
  
  f21e9f0df3119f330e7bfb9128533f49
- SHA1
  
  2d701a204cecbaccc516af53eb10e446a51c039e
- SHA256
  
  7c85b262e947094ebca795810d96d1e7bbe4d5c59a70a57c5791e4c1364172a2
- SHA512
  
  0a4d2261d0b74dc5bea1e784b8f7761202e90dae5fa385917471051e8a4e1d0e32d79a8dc8b905bae4c12a33b17a83a8da2336d87c6017d34df46af1168db1ad
- SSDEEP
  
  24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy