c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

c1210bfa51...79.exe

windows7-x64

7

c1210bfa51...79.exe

windows10-2004-x64

7

Sharing

General

Target

c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79
Size

6.2MB
Sample

231008-jsb19sda72
MD5

44964176a36d913c78fdcf6570ca10b5
SHA1

c919e9b8779aa15465250adc386a80308d47fa11
SHA256

c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79
SHA512

c5a6b85001b4a4c351579f15be9892d77fb32ca7684ad01dc2f249a902f16dc912fd4224a982152e48e91b0b2922d0cae4a55021e7a8dd942b2e75a293c497e2
SSDEEP

98304:kRiC10wxNleXTQwBA8aK9dmMZNBrpcFrPVyAEdjtw8TLhMhndN:/A0wET1AHKvmIrpctxEbfq

Score

7^/10

vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79.exe

Resource

win7-20230831-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79
- Size
  
  6.2MB
- MD5
  
  44964176a36d913c78fdcf6570ca10b5
- SHA1
  
  c919e9b8779aa15465250adc386a80308d47fa11
- SHA256
  
  c1210bfa51de1eecc994cdfd73eac8222a3b7fb6e7fb68b98921fe99f6f2fd79
- SHA512
  
  c5a6b85001b4a4c351579f15be9892d77fb32ca7684ad01dc2f249a902f16dc912fd4224a982152e48e91b0b2922d0cae4a55021e7a8dd942b2e75a293c497e2
- SSDEEP
  
  98304:kRiC10wxNleXTQwBA8aK9dmMZNBrpcFrPVyAEdjtw8TLhMhndN:/A0wET1AHKvmIrpctxEbfq
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy