9eabdd9ae3e3d33f396106303c14889617f30c2a744ddccc414e0646be120b47 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

21249829dc...22.exe

windows7-x64

7

21249829dc...22.exe

windows10-2004-x64

7

Sharing

General

Target

21249829dc5d6a0d8f124a2c91334022
Size

542KB
Sample

231231-afjqxabebj
MD5

21249829dc5d6a0d8f124a2c91334022
SHA1

7229a7e018b33407cb2be29ab7faf7d89ad14ff7
SHA256

9eabdd9ae3e3d33f396106303c14889617f30c2a744ddccc414e0646be120b47
SHA512

03073b9a1af00cfb0f04bdcd6e9f6fefe020a2693ad112557a51f44ccc641ca381d475e2b35648d7d8af91f4cac23e7d6b9a1dec613f831aa3febdfdfd6bf45d
SSDEEP

12288:s5m8ZlWk6VT6qIm9qCZb5rTa8kdVXpPzSb+lSse2HJEIJTy:XO+DD9qCZb5rTa8UPPg9sdJtVy

Score

7^/10

upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

21249829dc5d6a0d8f124a2c91334022.exe

Resource

win7-20231215-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

21249829dc5d6a0d8f124a2c91334022.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  21249829dc5d6a0d8f124a2c91334022
- Size
  
  542KB
- MD5
  
  21249829dc5d6a0d8f124a2c91334022
- SHA1
  
  7229a7e018b33407cb2be29ab7faf7d89ad14ff7
- SHA256
  
  9eabdd9ae3e3d33f396106303c14889617f30c2a744ddccc414e0646be120b47
- SHA512
  
  03073b9a1af00cfb0f04bdcd6e9f6fefe020a2693ad112557a51f44ccc641ca381d475e2b35648d7d8af91f4cac23e7d6b9a1dec613f831aa3febdfdfd6bf45d
- SSDEEP
  
  12288:s5m8ZlWk6VT6qIm9qCZb5rTa8kdVXpPzSb+lSse2HJEIJTy:XO+DD9qCZb5rTa8UPPg9sdJtVy
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy