0ebf8127819c32188ca8d0b42e18bc45a93a7e59680aeecb9f5b8c25c898c3b9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

ssstik.io_...68.mp3

windows10-2004-x64

Sharing

General

Target

ssstik.io_1708084199268.mp3
Size

922KB
Sample

240224-v33grahe56
MD5

fef27df9b4f85a717478fa8beac5ee74
SHA1

4886a4b154e6f9cc4cdef1db32c280bdb0439678
SHA256

0ebf8127819c32188ca8d0b42e18bc45a93a7e59680aeecb9f5b8c25c898c3b9
SHA512

d91a723d10b1f8d0ed1fda94bb38b17ff03aca489d09867f28cffbf0a398e8738b3174f5c46d55d4d975d1d26bc9c630d91a309bab9c956bd6b339180c0f9ddf
SSDEEP

24576:5UZcJxWRIhVU/BN/GrGUSPREqzNXO3RdxqRo9Vukm:5Ue8IhiQwprtSRdxqRT

Score

10^/10

microsoft evasion phishing ransomware trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

ssstik.io_1708084199268.mp3

Resource

win10v2004-20240221-en

microsoft evasion phishing ransomware trojan upx

windows10-2004-x64

19 signatures

1800 seconds

Malware Config

Targets

- Target
  
  ssstik.io_1708084199268.mp3
- Size
  
  922KB
- MD5
  
  fef27df9b4f85a717478fa8beac5ee74
- SHA1
  
  4886a4b154e6f9cc4cdef1db32c280bdb0439678
- SHA256
  
  0ebf8127819c32188ca8d0b42e18bc45a93a7e59680aeecb9f5b8c25c898c3b9
- SHA512
  
  d91a723d10b1f8d0ed1fda94bb38b17ff03aca489d09867f28cffbf0a398e8738b3174f5c46d55d4d975d1d26bc9c630d91a309bab9c956bd6b339180c0f9ddf
- SSDEEP
  
  24576:5UZcJxWRIhVU/BN/GrGUSPREqzNXO3RdxqRo9Vukm:5Ue8IhiQwprtSRdxqRT
Score

10^/10

microsoft evasion phishing ransomware trojan upx
- UAC bypass
  evasion trojan
- Disables Task Manager via registry modification
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
- Sets desktop wallpaper using registry
  ransomware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

microsoftevasionphishingransomwaretrojanupx

© 2018-2025

Terms | Privacy