70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

70dc6cacfe...93.exe

windows7-x64

8

70dc6cacfe...93.exe

windows10-2004-x64

7

Sharing

General

Target

70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93
Size

944KB
Sample

240119-ppzwtadhdl
MD5

c4b31f9b349d9261320831e08ce787e9
SHA1

2e75b38d288e0ccfa825b1aef2c4137d7906cc41
SHA256

70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93
SHA512

d97e823eb7d8b9550ac4c6b6120b70c542cecc9ba95da8eb1fb5b37e2e2fa02206681b49504378c191e60594bcc267e7c1e69b4a52bfa81006ba7348eb4f23f5
SSDEEP

24576:gI7ju/PG9SCTOL9/H/VMIuI0YqX1fEUDzBqdipHqR48HorEH7A:gI7CSSCU071PzBmihk4R

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93
- Size
  
  944KB
- MD5
  
  c4b31f9b349d9261320831e08ce787e9
- SHA1
  
  2e75b38d288e0ccfa825b1aef2c4137d7906cc41
- SHA256
  
  70dc6cacfef0caebf427e99f31629b11fdad5ff3c0e49a5c87206b82e5d80b93
- SHA512
  
  d97e823eb7d8b9550ac4c6b6120b70c542cecc9ba95da8eb1fb5b37e2e2fa02206681b49504378c191e60594bcc267e7c1e69b4a52bfa81006ba7348eb4f23f5
- SSDEEP
  
  24576:gI7ju/PG9SCTOL9/H/VMIuI0YqX1fEUDzBqdipHqR48HorEH7A:gI7CSSCU071PzBmihk4R
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy