f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

f1fcd083f8...cc.exe

windows7-x64

f1fcd083f8...cc.exe

windows10-2004-x64

Sharing

General

Target

f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc
Size

433KB
Sample

221206-mye7naba43
MD5

8c483d31d90cb9c0642eafa94d00b7e3
SHA1

c6c3ac38b00091a505c6609fa00db0ee2b3a89e0
SHA256

f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc
SHA512

e532c5eea5a3f7584aa0fb509eceec2dc5577d31025206f85cb0bb26caba5c9fa6857fa43369cf204d7c7346234f5ebdebf087f82537fbb5d034466b42dc6c16
SSDEEP

12288:xZUKXCWhLv9hJ/uB8jKZ67/Nag/HFNyWouSpM5TCI+7roS:vUKyCLvdGB9K/Xfnktp4TCv

Score

10^/10

evasion upx

Static task

static1

Behavioral task

behavioral1

Sample

f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc.exe

Resource

win7-20221111-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc
- Size
  
  433KB
- MD5
  
  8c483d31d90cb9c0642eafa94d00b7e3
- SHA1
  
  c6c3ac38b00091a505c6609fa00db0ee2b3a89e0
- SHA256
  
  f1fcd083f8079998648d4b3ea35c42373a3dfa970ac8228442a1717d35fcc9cc
- SHA512
  
  e532c5eea5a3f7584aa0fb509eceec2dc5577d31025206f85cb0bb26caba5c9fa6857fa43369cf204d7c7346234f5ebdebf087f82537fbb5d034466b42dc6c16
- SSDEEP
  
  12288:xZUKXCWhLv9hJ/uB8jKZ67/Nag/HFNyWouSpM5TCI+7roS:vUKyCLvdGB9K/Xfnktp4TCv
Score

10^/10

evasion upx
- Modifies firewall policy service
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy