Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

wexhfyjifl...wi.exe

windows10-2004-x64

10

wexhfyjifl...wi.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wexhfyjiflbfxbkpbmwi.exe

  • Size

    10.1MB

  • Sample

    240201-el2acscgem

  • MD5

    5a3566fab9f55ddcf287aa96a60ad579

  • SHA1

    247839d601b36bd2c0411241e4a89b28c6ff70da

  • SHA256

    54df213162ccbb081e13f8cb5bd84022f7e6587a68a04522da08f9fd56b8ef53

  • SHA512

    46f5b7e2524f29ca069da75a0a4c3958d2dada86c7bc7db814ed73a737e5906b6c6cb20cb113d5982975ed6443be0deac9c56338a7c2b5424cfd86232a52b807

  • SSDEEP

    196608:VEzDgHsNFdc2k9dYnqFc9PzzGZnjurXuwLs4PCE4+HtrHpRpfxGjpeQN8:4RNFdav26pjujuwhaE4+HtJRppGsl

Score
10/10

Malware Config

Targets

    • Target

      wexhfyjiflbfxbkpbmwi.exe

    • Size

      10.1MB

    • MD5

      5a3566fab9f55ddcf287aa96a60ad579

    • SHA1

      247839d601b36bd2c0411241e4a89b28c6ff70da

    • SHA256

      54df213162ccbb081e13f8cb5bd84022f7e6587a68a04522da08f9fd56b8ef53

    • SHA512

      46f5b7e2524f29ca069da75a0a4c3958d2dada86c7bc7db814ed73a737e5906b6c6cb20cb113d5982975ed6443be0deac9c56338a7c2b5424cfd86232a52b807

    • SSDEEP

      196608:VEzDgHsNFdc2k9dYnqFc9PzzGZnjurXuwLs4PCE4+HtrHpRpfxGjpeQN8:4RNFdav26pjujuwhaE4+HtJRppGsl

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Deletes itself

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks