feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

feb9301032...63.exe

windows7-x64

7

feb9301032...63.exe

windows10-2004-x64

8

Sharing

General

Target

feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963
Size

10.6MB
Sample

231224-hlctjscce4
MD5

9ea06e2ba709b7aaf037b50fc7632dfb
SHA1

a2d6829a9f2b00971b3ef84cb99393145654359d
SHA256

feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963
SHA512

3884c487c03ae05413279126f88dabd2848c98a1167c31e47a3801c5ec71cd669a3699417ac810775700dcb9b8604a03573f52db164ab3346d970bd1fa4e34df
SSDEEP

196608:vHBJ/2/o87W4NfDpk0imvabSJ67aMeCCB/B/kMmfNv8JwY:ZL87hlfiCXJmHelvwvH

Score

8^/10

vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963.exe

Resource

win7-20231215-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963
- Size
  
  10.6MB
- MD5
  
  9ea06e2ba709b7aaf037b50fc7632dfb
- SHA1
  
  a2d6829a9f2b00971b3ef84cb99393145654359d
- SHA256
  
  feb930103257de5b8a469d39d3b3d5eb836e04395fefac1bcfbfe673e249d963
- SHA512
  
  3884c487c03ae05413279126f88dabd2848c98a1167c31e47a3801c5ec71cd669a3699417ac810775700dcb9b8604a03573f52db164ab3346d970bd1fa4e34df
- SSDEEP
  
  196608:vHBJ/2/o87W4NfDpk0imvabSJ67aMeCCB/B/kMmfNv8JwY:ZL87hlfiCXJmHelvwvH
Score

8^/10

vmprotect
- Downloads MZ/PE file
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy