8e09b38ae36b323e544691cad85e3b633d05606183b8668936204ca36d44b125 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

05c3072c5a...1b.exe

windows7-x64

7

05c3072c5a...1b.exe

windows10-2004-x64

7

Sharing

General

Target

05c3072c5af72f61686f0a9d8bd9661b
Size

446KB
Sample

231229-2hs6xahgh7
MD5

05c3072c5af72f61686f0a9d8bd9661b
SHA1

8766bb71a8c01fc54e5993db89f8bb10559eb3aa
SHA256

8e09b38ae36b323e544691cad85e3b633d05606183b8668936204ca36d44b125
SHA512

bf8938a548c76766a48c97d39ac213647991ce8910aae9edbd9f55519eb25edb62a595304b43f09de7d623abf1003334ec7b17628f0480f763780e967506ea2c
SSDEEP

6144:5ZunObR8sVImcyYC5Jfz3jzB8kOQIq+3mxkyJIrC+J/pbKvCB23xqy7uXhY7pOKv:WK+mzH/6Y+4hupHQYyqXh6ZyDlaLsiTH

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

05c3072c5af72f61686f0a9d8bd9661b.exe

Resource

win7-20231129-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

05c3072c5af72f61686f0a9d8bd9661b.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  05c3072c5af72f61686f0a9d8bd9661b
- Size
  
  446KB
- MD5
  
  05c3072c5af72f61686f0a9d8bd9661b
- SHA1
  
  8766bb71a8c01fc54e5993db89f8bb10559eb3aa
- SHA256
  
  8e09b38ae36b323e544691cad85e3b633d05606183b8668936204ca36d44b125
- SHA512
  
  bf8938a548c76766a48c97d39ac213647991ce8910aae9edbd9f55519eb25edb62a595304b43f09de7d623abf1003334ec7b17628f0480f763780e967506ea2c
- SSDEEP
  
  6144:5ZunObR8sVImcyYC5Jfz3jzB8kOQIq+3mxkyJIrC+J/pbKvCB23xqy7uXhY7pOKv:WK+mzH/6Y+4hupHQYyqXh6ZyDlaLsiTH
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy