150d43b4959347509958bca7bdcb94bc6b716af6c6d3cdd7ff667d878f9ab079 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

53bd5afec2...ed.exe

windows7-x64

7

53bd5afec2...ed.exe

windows10-2004-x64

7

Sharing

General

Target

53bd5afec2ad0b6ab5c396d1008c23ed
Size

679KB
Sample

231226-ezdq8aeda5
MD5

53bd5afec2ad0b6ab5c396d1008c23ed
SHA1

c513812652b34afd1009e25c9b84420393c2b055
SHA256

150d43b4959347509958bca7bdcb94bc6b716af6c6d3cdd7ff667d878f9ab079
SHA512

54eadad5685aa6cd6658b85128fbb632292393bd75568b07129dc93c0af060350dec82761f96ad23343f6cbf3cf922776725684d6e4d5852bbe51dea94ab256c
SSDEEP

12288:oQ+8YcSdcdp7GqDd7o4YINDz6/AAgYShiuFfIihBtwVabCMUA4+6vlF7J:kiSmrpDd75d68hiuF5H8abCMUN+YlFV

Score

7^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

53bd5afec2ad0b6ab5c396d1008c23ed.exe

Resource

win7-20231215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

53bd5afec2ad0b6ab5c396d1008c23ed.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  53bd5afec2ad0b6ab5c396d1008c23ed
- Size
  
  679KB
- MD5
  
  53bd5afec2ad0b6ab5c396d1008c23ed
- SHA1
  
  c513812652b34afd1009e25c9b84420393c2b055
- SHA256
  
  150d43b4959347509958bca7bdcb94bc6b716af6c6d3cdd7ff667d878f9ab079
- SHA512
  
  54eadad5685aa6cd6658b85128fbb632292393bd75568b07129dc93c0af060350dec82761f96ad23343f6cbf3cf922776725684d6e4d5852bbe51dea94ab256c
- SSDEEP
  
  12288:oQ+8YcSdcdp7GqDd7o4YINDz6/AAgYShiuFfIihBtwVabCMUA4+6vlF7J:kiSmrpDd75d68hiuF5H8abCMUN+YlFV
Score

7^/10

discovery upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy