91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

91d06d2d90...48.exe

windows7-x64

1

91d06d2d90...48.exe

windows10-2004-x64

9

Sharing

General

Target

91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48
Size

5.2MB
Sample

221201-zzeczabf25
MD5

316dd6a0a1eb3fa8eb6708ff2763535f
SHA1

e7ba5b9b6f1bcf557cc0b9e0d441da0433c046ec
SHA256

91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48
SHA512

311925c3e4e8a217cb6a0bef35886d90e72bdcedf14912fbcb4e332c657e78365c7bfccc129e7e1ac7d36ef8398caf97ebffad46f1c6d84f14c1e3af563d52bc
SSDEEP

98304:5LeYcsWqmiYwlTcLS56umnOhMc6nUxvDTB5iyZsicNl6i2PQvVwQ3k7NE0TsUaJB:0M/NGymnOhM1Uxv/3iyZsic9nVD3sGO2

Score

9^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48
- Size
  
  5.2MB
- MD5
  
  316dd6a0a1eb3fa8eb6708ff2763535f
- SHA1
  
  e7ba5b9b6f1bcf557cc0b9e0d441da0433c046ec
- SHA256
  
  91d06d2d904679f3af027c10b8a31a4e03257d3dfdaf741dcf5d3fb0d0f28f48
- SHA512
  
  311925c3e4e8a217cb6a0bef35886d90e72bdcedf14912fbcb4e332c657e78365c7bfccc129e7e1ac7d36ef8398caf97ebffad46f1c6d84f14c1e3af563d52bc
- SSDEEP
  
  98304:5LeYcsWqmiYwlTcLS56umnOhMc6nUxvDTB5iyZsicNl6i2PQvVwQ3k7NE0TsUaJB:0M/NGymnOhM1Uxv/3iyZsic9nVD3sGO2
Score

9^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy