55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

5557452490...d7.exe

windows7-x64

8

5557452490...d7.exe

windows10-2004-x64

8

Sharing

General

Target

55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7
Size

27KB
Sample

221129-k1xhlsec43
MD5

0c9ee4a8c45b7a5ce276bf629025b5ef
SHA1

1b0a1ae737c9377eaf4bf406afd3870c8144d136
SHA256

55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7
SHA512

6fb7355bbdeca1c47de3473bcb3d414504266a92ff4c4ff586fe7918497a7f7604c78daf1239372cf79929f425130a7bbd79717e69b23e30187f58c0ff3eec95
SSDEEP

384:u5kAWwLQORlWwOkmEzrU97+KqOyVWZpHVP8NkJ4snGF1DS5+W9781i5GiW4tDSh5:08O/WwOFIrugE4Ni8LzOilveez19zf

Score

8^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7.exe

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7
- Size
  
  27KB
- MD5
  
  0c9ee4a8c45b7a5ce276bf629025b5ef
- SHA1
  
  1b0a1ae737c9377eaf4bf406afd3870c8144d136
- SHA256
  
  55574524900a8fb459d0050a00c64ac409c66c58084409e7492aec96cb265dd7
- SHA512
  
  6fb7355bbdeca1c47de3473bcb3d414504266a92ff4c4ff586fe7918497a7f7604c78daf1239372cf79929f425130a7bbd79717e69b23e30187f58c0ff3eec95
- SSDEEP
  
  384:u5kAWwLQORlWwOkmEzrU97+KqOyVWZpHVP8NkJ4snGF1DS5+W9781i5GiW4tDSh5:08O/WwOFIrugE4Ni8LzOilveez19zf
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy