e48229eccce19f5b00299a9d70d9a8afa4cb6abdc4e46dcb62e95843f5e1274d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

testing.exe

windows10-1703-x64

8

Sharing

General

Target

testing.exe
Size

2.7MB
Sample

240118-ysyycsgdbn
MD5

7bc2995d24a569dc7d65a2b92ca894bb
SHA1

76e210f61f66f055592139336985a7d00bc484d2
SHA256

e48229eccce19f5b00299a9d70d9a8afa4cb6abdc4e46dcb62e95843f5e1274d
SHA512

862f03bea1cbeb0a7646ef0ff13c916a74833628894d517bd0f2ad093a84c2aa0819fc542d8229b88db2c9635de34001aa09b31047c9684b74188429f00ec445
SSDEEP

49152:yw4Gb/hZZxF9qQ1JaXKOVAWJpB4YWtA4Pofg40xPfVV8WW4V2mya/hm:y2Vlv1JaXJXpB4YWv7X3Va0QYhm

Score

8^/10

evasion persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

testing.exe

Resource

win10-20231215-en

evasion persistence

windows10-1703-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  testing.exe
- Size
  
  2.7MB
- MD5
  
  7bc2995d24a569dc7d65a2b92ca894bb
- SHA1
  
  76e210f61f66f055592139336985a7d00bc484d2
- SHA256
  
  e48229eccce19f5b00299a9d70d9a8afa4cb6abdc4e46dcb62e95843f5e1274d
- SHA512
  
  862f03bea1cbeb0a7646ef0ff13c916a74833628894d517bd0f2ad093a84c2aa0819fc542d8229b88db2c9635de34001aa09b31047c9684b74188429f00ec445
- SSDEEP
  
  49152:yw4Gb/hZZxF9qQ1JaXKOVAWJpB4YWtA4Pofg40xPfVV8WW4V2mya/hm:y2Vlv1JaXJXpB4YWv7X3Va0QYhm
Score

8^/10

evasion persistence
- Creates new service(s)
  persistence
- Stops running service(s)
  evasion
- Executes dropped EXE
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionpersistence

© 2018-2025

Terms | Privacy