f3e316f6fd4ae963b581ccbd173334387fc4700cd7f4bc09e664c94c1df228c8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

Payment Ad...df.exe

windows7-x64

5

Payment Ad...df.exe

windows10-2004-x64

5

Sharing

General

Target

f3e316f6fd4ae963b581ccbd173334387fc4700cd7f4bc09e664c94c1df228c8
Size

660KB
Sample

231220-mgx15saabn
MD5

d3a3998bcd31d0ad2632c84f9dec59b1
SHA1

b1991a3de0e0ad1d99e98084d0edea3c3e18cc83
SHA256

f3e316f6fd4ae963b581ccbd173334387fc4700cd7f4bc09e664c94c1df228c8
SHA512

07d78f976102018742d4fff536717ea8e51a78590f671c6e6d8376e604dd7a5dd9774ac9330955fc91bc4376c1bf77b551d42edff9e0428f632fc40d773d6284
SSDEEP

12288:YTB+B2Njw+vXDg/FVHQNln3V3s01k6be2WEVY7VgG0sQ2SCB:WBA2Nbg/FOL3VB1k6be2WEZG0svSI

Score

5^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Payment Advise 201223 pdf.exe

Resource

win7-20231215-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Payment Advise 201223 pdf.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  Payment Advise 201223 pdf.exe
- Size
  
  951KB
- MD5
  
  43e62f55ca87bca9958904980c6a739e
- SHA1
  
  8049cf6db6349ce872022bf7c25ecc392946fc65
- SHA256
  
  860a1dfc03c5420e2fc343a66434075b286deb3ecb03134486d24c18ef60687d
- SHA512
  
  62471d5d804a8a807d69e0db7b298ae785d7036e165ba6e0d09d50fce6aa7719e36d1f81c3f139a254c7e4dc55e2b36b5ba6e0c38b380be586ad646b59adda97
- SSDEEP
  
  12288:LyXbgBFhPQN39BnbG5WKb6M8rePfIs7ReZei:KgBFyJfnq5WKb6M8reoIReZ9
Score

5^/10
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy