8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8f1907fbd6...b2.exe

windows7-x64

8

8f1907fbd6...b2.exe

windows10-2004-x64

8

Sharing

General

Target

8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2
Size

304KB
Sample

221206-rx4abafe42
MD5

0b31efce23800beabd76429201cf6d7a
SHA1

7274d8c7b98626429685b20e696f0c540dd6ff4c
SHA256

8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2
SHA512

375484874cb7ccf95defff671a1a7b7a5912b3234bd5b3c65497fe7d862bb35116f073c6be20526540001f7eafe61882e303b284737cdc4cb23cfc5385604be2
SSDEEP

6144:/R2zP+yfhYNKRZ2T92Yr00yJGK8Y9TfqvQDhUTa7eMM+2PqN+x/OES8r+5Z:QzQx+J7V9bqoDhMayMQPqN+x/Ov8r+v

Score

8^/10

aspackv2 upx

Static task

static1

Behavioral task

behavioral1

Sample

8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2
- Size
  
  304KB
- MD5
  
  0b31efce23800beabd76429201cf6d7a
- SHA1
  
  7274d8c7b98626429685b20e696f0c540dd6ff4c
- SHA256
  
  8f1907fbd66439897560c5e894062b3ba1df11c729e4f81f165a5f70ce751fb2
- SHA512
  
  375484874cb7ccf95defff671a1a7b7a5912b3234bd5b3c65497fe7d862bb35116f073c6be20526540001f7eafe61882e303b284737cdc4cb23cfc5385604be2
- SSDEEP
  
  6144:/R2zP+yfhYNKRZ2T92Yr00yJGK8Y9TfqvQDhUTa7eMM+2PqN+x/OES8r+5Z:QzQx+J7V9bqoDhMayMQPqN+x/Ov8r+v
Score

8^/10

aspackv2 upx
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy