de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

de8a81a173...dd.exe

windows7-x64

8

de8a81a173...dd.exe

windows10-2004-x64

8

Sharing

General

Target

de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd
Size

3.9MB
Sample

221203-znp1bsdh67
MD5

7a82bdeb3177ea9324dff7fb205c56c7
SHA1

c2afd496d721aca16f8866614ad9f23f9e376680
SHA256

de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd
SHA512

353cddb911b0d656d25e9b52f0ecda244c8e836bd65391111fe629dacff96a770f567647b724f1eb0c9dea6931361c0412f69ef5a92a453521f15d61711b8390
SSDEEP

12288:HPwdP/PFdPZdP2PFdPZdPxPFdPZdPWPFdPZdPvPFdPZdP0PFdPZdPRPFdPZdPaPo:

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd.exe

Resource

win7-20221111-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd
- Size
  
  3.9MB
- MD5
  
  7a82bdeb3177ea9324dff7fb205c56c7
- SHA1
  
  c2afd496d721aca16f8866614ad9f23f9e376680
- SHA256
  
  de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd
- SHA512
  
  353cddb911b0d656d25e9b52f0ecda244c8e836bd65391111fe629dacff96a770f567647b724f1eb0c9dea6931361c0412f69ef5a92a453521f15d61711b8390
- SSDEEP
  
  12288:HPwdP/PFdPZdP2PFdPZdPxPFdPZdPWPFdPZdPvPFdPZdP0PFdPZdPRPFdPZdPaPo:
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy