5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

1

5f856e87b2...62.exe

windows7-x64

9

5f856e87b2...62.exe

windows10-2004-x64

9

Sharing

General

Target

5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62
Size

980KB
Sample

221126-azdzrsda9v
MD5

8137a72f3f36423cdc6419298687413a
SHA1

cad51e28355529979185aafd707f91a916769e67
SHA256

5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62
SHA512

4e5df6d6e9ef2050d829ff74b667d4289079630efb9e1ad38baad1e3feb6a7263e183a8c046a59a1dc20dfa83b94272f1a61238b121f19e42a229b5465b133b7
SSDEEP

24576:ggxUQl8rXnmwXLDcXP489kqo6jd24//xSg/N4qXn/gnEbV:g9mwXPcXP4YkqmYeqX/gnEbV

Score

9^/10

evasion trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62.exe

Resource

win7-20221111-en

evasion trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62.exe

Resource

win10v2004-20220812-en

evasion trojan upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62
- Size
  
  980KB
- MD5
  
  8137a72f3f36423cdc6419298687413a
- SHA1
  
  cad51e28355529979185aafd707f91a916769e67
- SHA256
  
  5f856e87b278381fa322d71a6a0c963fb4c0990aca57be099e928b0bf4e02e62
- SHA512
  
  4e5df6d6e9ef2050d829ff74b667d4289079630efb9e1ad38baad1e3feb6a7263e183a8c046a59a1dc20dfa83b94272f1a61238b121f19e42a229b5465b133b7
- SSDEEP
  
  24576:ggxUQl8rXnmwXLDcXP489kqo6jd24//xSg/N4qXn/gnEbV:g9mwXPcXP4YkqmYeqX/gnEbV
Score

9^/10

evasion trojan upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx

© 2018-2025

Terms | Privacy