9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

9ae6f9292f...68.exe

windows7-x64

8

9ae6f9292f...68.exe

windows10-2004-x64

8

Sharing

General

Target

9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568
Size

468KB
Sample

231116-s67jrseb4t
MD5

1f8868209615e7bd1232d7bc87f3bcc3
SHA1

1d43e8dd2c62079c369b9dc1bc80f83c6c8b174b
SHA256

9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568
SHA512

788370263209682b619ccef3f565b741df6b47bb740dc5a85f21e701bce2b3a6676ca01d06160abcb2157d236fb4f524d3c518087f3f3c6e9f50c2d8f30057c2
SSDEEP

12288:8LLFQgJ2DWDb2sGjYx3UTA4gH0Vh7r/BjvrEH7t:ULGjhgH8hnNrEH7t

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568.exe

Resource

win7-20231023-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568.exe

Resource

win10v2004-20231023-en

persistence upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568
- Size
  
  468KB
- MD5
  
  1f8868209615e7bd1232d7bc87f3bcc3
- SHA1
  
  1d43e8dd2c62079c369b9dc1bc80f83c6c8b174b
- SHA256
  
  9ae6f9292f90b3aca9be3acc600ab87080241101726ff221ec9f627cde6f6568
- SHA512
  
  788370263209682b619ccef3f565b741df6b47bb740dc5a85f21e701bce2b3a6676ca01d06160abcb2157d236fb4f524d3c518087f3f3c6e9f50c2d8f30057c2
- SSDEEP
  
  12288:8LLFQgJ2DWDb2sGjYx3UTA4gH0Vh7r/BjvrEH7t:ULGjhgH8hnNrEH7t
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy