e2b945c729a639d8d2e5924e98a65a6792e2bac3b17813c9f9e845e34f84b4b9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

pozemenutroll.exe

windows7-x64

5

pozemenutroll.exe

windows10-2004-x64

5

Sharing

General

Target

pozemenutroll.exe
Size

14.8MB
Sample

231013-z2r2vaaf7t
MD5

86d5019d46253f5efacaf182e41fbd26
SHA1

f62eef1bbc213651c8cd6e93faf07dcbbe80198a
SHA256

e2b945c729a639d8d2e5924e98a65a6792e2bac3b17813c9f9e845e34f84b4b9
SHA512

3b2cfbc58d9b754d02b89df1784c7e7403d28d9bccb97776c86149f9b4c616792d5a674a0c1e79b23986b417b44ead092af75920beede4073fe3f0bd3c0b655f
SSDEEP

196608:4BLhL4YrNZv+dV+VcjfFvQU0gGunkLAMECCLi7mi3Pc/dV2K35cBwkagMgn+ryP5:4BNQ+QhcdXLg7qjE2K35AwkagMdy

Score

5^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

pozemenutroll.exe

Resource

win7-20230831-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

pozemenutroll.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  pozemenutroll.exe
- Size
  
  14.8MB
- MD5
  
  86d5019d46253f5efacaf182e41fbd26
- SHA1
  
  f62eef1bbc213651c8cd6e93faf07dcbbe80198a
- SHA256
  
  e2b945c729a639d8d2e5924e98a65a6792e2bac3b17813c9f9e845e34f84b4b9
- SHA512
  
  3b2cfbc58d9b754d02b89df1784c7e7403d28d9bccb97776c86149f9b4c616792d5a674a0c1e79b23986b417b44ead092af75920beede4073fe3f0bd3c0b655f
- SSDEEP
  
  196608:4BLhL4YrNZv+dV+VcjfFvQU0gGunkLAMECCLi7mi3Pc/dV2K35cBwkagMgn+ryP5:4BNQ+QhcdXLg7qjE2K35AwkagMdy
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy