a369679b6d4a75bdb08c5793eb7bb75e1b9dc622ae8c6cfe5ca19bc6bf0e1048 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

oauth20_authorize.js

windows10-1703-x64

6

Sharing

General

Target

oauth20_authorize.srf
Size

26KB
Sample

230413-ctdsxsgg25
MD5

f5658a3d5b51b89de2593a6ca25a0368
SHA1

7e58ef6a2e7e8a9566f19cf4e8530457ed44a5bf
SHA256

a369679b6d4a75bdb08c5793eb7bb75e1b9dc622ae8c6cfe5ca19bc6bf0e1048
SHA512

b2dd7fd4b185d0133dcddc00e43898b60f19e54a1513fccaecebd788f1dc51dcf228de04136caf19e81c6257563832966f02e46c2ae8ea327e493c569bdad938
SSDEEP

384:++UzR6ARMm71PrHh8cQ1upX9uZ65l3YuuASzc3hj+1d5SzDn:foMAdBrBpoawzcRUSzD

Score

6^/10

Static task

static1

Behavioral task

behavioral1

Sample

oauth20_authorize.js

Resource

win10-20230220-en

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  oauth20_authorize.srf
- Size
  
  26KB
- MD5
  
  f5658a3d5b51b89de2593a6ca25a0368
- SHA1
  
  7e58ef6a2e7e8a9566f19cf4e8530457ed44a5bf
- SHA256
  
  a369679b6d4a75bdb08c5793eb7bb75e1b9dc622ae8c6cfe5ca19bc6bf0e1048
- SHA512
  
  b2dd7fd4b185d0133dcddc00e43898b60f19e54a1513fccaecebd788f1dc51dcf228de04136caf19e81c6257563832966f02e46c2ae8ea327e493c569bdad938
- SSDEEP
  
  384:++UzR6ARMm71PrHh8cQ1upX9uZ65l3YuuASzc3hj+1d5SzDn:foMAdBrBpoawzcRUSzD
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy