0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a
Size

277KB
Sample

230413-17ngaaga8t
MD5

19d34eec68af4b9b80cf24a1ce2959bd
SHA1

104dacb58a2035e389c52551197a275227edb8c1
SHA256

0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a
SHA512

1d08ed57e3c33385376f24c9c3c14a07441a158d2e0923e2968e71fdbe932d042c617e3bd923b22c82277fbac69476073b4cf65eaf64f5bc5f180f847405245c
SSDEEP

6144:3XzKdNY49u8rVOaKCjGvWz8mvP6r901netz:Ia4A6nGvWX601o

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a
- Size
  
  277KB
- MD5
  
  19d34eec68af4b9b80cf24a1ce2959bd
- SHA1
  
  104dacb58a2035e389c52551197a275227edb8c1
- SHA256
  
  0965513357842522d4441b34334cd7b54b36571c047bb459c8af5a1c3d67f39a
- SHA512
  
  1d08ed57e3c33385376f24c9c3c14a07441a158d2e0923e2968e71fdbe932d042c617e3bd923b22c82277fbac69476073b4cf65eaf64f5bc5f180f847405245c
- SSDEEP
  
  6144:3XzKdNY49u8rVOaKCjGvWz8mvP6r901netz:Ia4A6nGvWX601o
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy