Overview

overview

10

Static

static

14e26fcb05...44.exe

windows7-x64

10

14e26fcb05...44.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    39s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    29/01/2023, 17:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044.exe

  • Size

    451KB

  • MD5

    95717067649f46f99fd1a6fdf756d8dc

  • SHA1

    9e83a602c6ac952f23816b5cfca9b5038cc7026a

  • SHA256

    14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044

  • SHA512

    baca39a84299b154b7a065a2ecf4ca1cfe4fb219aaa2315b54fd514b3ea868f5246fe2d7966c2d9bf9ae92e9e523bb8831560b4880b632dfff445aa03e6d0bc6

  • SSDEEP

    12288:f7Z1YxE0qcmh204+2gYEOAF4uwmRilBJo:fLL0qlh9oAF4uw4Kk

Score
10/10
triumphloaderloadertrojan

Malware Config

Signatures

  • TriumphLoader

    TriumphLoader is a c++ loader based on the open source AbsentLoader.

    trojanloadertriumphloader
  • TriumphLoader payload 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044.exe
    "C:\Users\Admin\AppData\Local\Temp\14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044.exe"
    1⤵
      PID:1340

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1340-54-0x00000000002A8000-0x00000000002E5000-memory.dmp

      Filesize

      244KB

      Download

    • memory/1340-55-0x00000000002A8000-0x00000000002E5000-memory.dmp

      Filesize

      244KB

      Download

    • memory/1340-56-0x0000000002B20000-0x0000000002B9F000-memory.dmp

      Filesize

      508KB

      Download

    • memory/1340-57-0x0000000000400000-0x0000000002B13000-memory.dmp

      Filesize

      39.1MB

      Download

    • memory/1340-58-0x0000000076041000-0x0000000076043000-memory.dmp

      Filesize

      8KB

      Download

    • memory/1340-59-0x00000000002A8000-0x00000000002E5000-memory.dmp

      Filesize

      244KB

      Download

    • memory/1340-60-0x0000000000400000-0x0000000002B13000-memory.dmp

      Filesize

      39.1MB

      Download