92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

dridex

windows10-1703-x64

8

Sharing

General

Target

92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c
Size

1.4MB
Sample

230801-xjqd7aag46
MD5

005d4d7f5959e29fbf349af33da3b489
SHA1

377d949de02d46f455716d18ced7136c329aa324
SHA256

92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c
SHA512

ee43b6bd3e5d2c83b5285789140678f831da11a89c4809e1e95950a2b86d224853854b1cc64e48bbe48d48453173589d7679318312fccad73a236c39aa3be391
SSDEEP

24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk

Score

8^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c.exe

Resource

win10-20230703-en

windows10-1703-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c
- Size
  
  1.4MB
- MD5
  
  005d4d7f5959e29fbf349af33da3b489
- SHA1
  
  377d949de02d46f455716d18ced7136c329aa324
- SHA256
  
  92e5f66f2e200fa0cf4fa9e60dd3d30bfae2f6d3b1e5894dc1dc8d63d6aa977c
- SHA512
  
  ee43b6bd3e5d2c83b5285789140678f831da11a89c4809e1e95950a2b86d224853854b1cc64e48bbe48d48453173589d7679318312fccad73a236c39aa3be391
- SSDEEP
  
  24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk
Score

8^/10

evasion upx
- Modifies Windows Firewall
  evasion
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.