ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

ed1b6a5ae9...bd.exe

windows7-x64

5

ed1b6a5ae9...bd.exe

windows10-2004-x64

5

Sharing

General

Target

ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd
Size

791KB
Sample

221204-plashsha85
MD5

63d1eee88fd628d4671419c323b9e77a
SHA1

2849c45484492839c4c114ec9b0e96db88a12d72
SHA256

ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd
SHA512

57afcf5bc6cb28d51f15e259fcd19d5adf98c81b1703ab0d84370d604dd8719701f8b69c0b3d0684daed9cfbbee93ef03e01fd48118df8654e5047332104fa5a
SSDEEP

12288:END7cWU6wDL+En5wSYcy+7shhPTQ1S3qy+GKBmHJ5hyrJL2jrmQYWcoep58Xb/7W:END7B6ubhGkZKBmHTrHYWcRIs74w

Score

5^/10

Static task

static1

Behavioral task

behavioral1

Sample

ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd
- Size
  
  791KB
- MD5
  
  63d1eee88fd628d4671419c323b9e77a
- SHA1
  
  2849c45484492839c4c114ec9b0e96db88a12d72
- SHA256
  
  ed1b6a5ae962586d9edc242ffa71fa3d02f6cbbfbafda2d0f221e0fd8fa258bd
- SHA512
  
  57afcf5bc6cb28d51f15e259fcd19d5adf98c81b1703ab0d84370d604dd8719701f8b69c0b3d0684daed9cfbbee93ef03e01fd48118df8654e5047332104fa5a
- SSDEEP
  
  12288:END7cWU6wDL+En5wSYcy+7shhPTQ1S3qy+GKBmHJ5hyrJL2jrmQYWcoep58Xb/7W:END7B6ubhGkZKBmHTrHYWcRIs74w
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy