e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

e80ebfb8cf...e1.exe

windows7-x64

8

e80ebfb8cf...e1.exe

windows10-2004-x64

8

Sharing

General

Target

e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1
Size

79KB
Sample

221204-nhkymshe4v
MD5

a4459b1cadf9a673e5b5de0889cad647
SHA1

ad8dff9e6071217503825425d7afab14c459c69d
SHA256

e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1
SHA512

754f0b781c3f0a6062a2d66ec73c7c1ee505d57f1e195d7a0799658f9ef69d1ddb64156c8f34a9f54ea8ca1f3b8ee202708bb31da876904291e8574190adf398
SSDEEP

1536:X68F1XnstmbwbYA+6Q0XfXVsEg0WWU1sb1tic7cJ0XRR6tj2qkSZZZ3gb0ibzMOB:XR3stcAXQ0XNK0WWU1sJtg0Xr6tjYUCr

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1
- Size
  
  79KB
- MD5
  
  a4459b1cadf9a673e5b5de0889cad647
- SHA1
  
  ad8dff9e6071217503825425d7afab14c459c69d
- SHA256
  
  e80ebfb8cf44a027f853583181244ad4bac0c77f1934d92620b14b4fd5e53ce1
- SHA512
  
  754f0b781c3f0a6062a2d66ec73c7c1ee505d57f1e195d7a0799658f9ef69d1ddb64156c8f34a9f54ea8ca1f3b8ee202708bb31da876904291e8574190adf398
- SSDEEP
  
  1536:X68F1XnstmbwbYA+6Q0XfXVsEg0WWU1sb1tic7cJ0XRR6tj2qkSZZZ3gb0ibzMOB:XR3stcAXQ0XNK0WWU1sJtg0Xr6tjYUCr
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy