a5b76157ad9d0fda8b5db04814aa1fdc980b9df9747ab0dc89d9b5ba53e6fded | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

TikTokStar...42.exe

windows10-2004-x64

6

Sharing

General

Target

TikTokStarsUncensored - Linkvertise Downloader_vJYw-42.exe
Size

2.6MB
Sample

230601-n8aklaeb47
MD5

5d28a492d20e32c4ae31993b127d7ac6
SHA1

c01708a59fd3bf96f08804225182a7a6325c76d2
SHA256

a5b76157ad9d0fda8b5db04814aa1fdc980b9df9747ab0dc89d9b5ba53e6fded
SHA512

3d07ea69bc33fffa8b87fa86f5cd3e9a34a9a48e770533b167a765e3b78fe51a1b1ee9d563943eac4048b360e33376776383578e548fd42df3fb048f13c0f6f7
SSDEEP

49152:dqe3f6aAzD7+H98AHaCfu64HCL+WuTmuKwEu:sSi9D7E9vBu/HCK5NKXu

Score

6^/10

Static task

static1

Behavioral task

behavioral1

Sample

TikTokStarsUncensored - Linkvertise Downloader_vJYw-42.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

17 signatures

1800 seconds

Malware Config

Targets

- Target
  
  TikTokStarsUncensored - Linkvertise Downloader_vJYw-42.exe
- Size
  
  2.6MB
- MD5
  
  5d28a492d20e32c4ae31993b127d7ac6
- SHA1
  
  c01708a59fd3bf96f08804225182a7a6325c76d2
- SHA256
  
  a5b76157ad9d0fda8b5db04814aa1fdc980b9df9747ab0dc89d9b5ba53e6fded
- SHA512
  
  3d07ea69bc33fffa8b87fa86f5cd3e9a34a9a48e770533b167a765e3b78fe51a1b1ee9d563943eac4048b360e33376776383578e548fd42df3fb048f13c0f6f7
- SSDEEP
  
  49152:dqe3f6aAzD7+H98AHaCfu64HCL+WuTmuKwEu:sSi9D7E9vBu/HCK5NKXu
Score

6^/10
- Checks for any installed AV software in registry
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy