d89504dcd16ff4e93cd4858637b7b0e71c845e42b3ee9f59cf03b954ec6a1107 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

Stardock.O...m].rar

windows7-x64

3

Stardock.O...m].rar

windows10-2004-x64

7

Resubmissions

06/03/2024, 14:41

240306-r2v5habg8w 7

06/03/2024, 14:35

240306-rybxfsbf4z 7

Sharing

General

Target

Stardock.ObjectDock.Plus.v2.01.743 [PeskTop.com].rar
Size

15.1MB
Sample

240306-r2v5habg8w
MD5

691c687cd95f173ba579323df1b81caf
SHA1

5954fee906fe54f8e0e86e0effde1420e2cb5c73
SHA256

d89504dcd16ff4e93cd4858637b7b0e71c845e42b3ee9f59cf03b954ec6a1107
SHA512

12c0300958383159051b86f30989746d6e33874fadb49caa82ee334082528bd618e76b9514f189c654130b8196ae8c172094d7a6a4d5f51a390777a0c0742b1f
SSDEEP

393216:KH/u79aupAJuEfBU8LF2ygBcpugXMsZZFxljgE1bSh9:K/uxawgBU8x2yIcpuUVl8E1bS7

Score

7^/10

discovery upx

Static task

static1

Behavioral task

behavioral1

Sample

Stardock.ObjectDock.Plus.v2.01.743 [PeskTop.com].rar

Resource

win7-20240221-en

windows7-x64

5 signatures

300 seconds

Behavioral task

behavioral2

Sample

Stardock.ObjectDock.Plus.v2.01.743 [PeskTop.com].rar

Resource

win10v2004-20240226-en

windows10-2004-x64

21 signatures

300 seconds

Malware Config

Targets

- Target
  
  Stardock.ObjectDock.Plus.v2.01.743 [PeskTop.com].rar
- Size
  
  15.1MB
- MD5
  
  691c687cd95f173ba579323df1b81caf
- SHA1
  
  5954fee906fe54f8e0e86e0effde1420e2cb5c73
- SHA256
  
  d89504dcd16ff4e93cd4858637b7b0e71c845e42b3ee9f59cf03b954ec6a1107
- SHA512
  
  12c0300958383159051b86f30989746d6e33874fadb49caa82ee334082528bd618e76b9514f189c654130b8196ae8c172094d7a6a4d5f51a390777a0c0742b1f
- SSDEEP
  
  393216:KH/u79aupAJuEfBU8LF2ygBcpugXMsZZFxljgE1bSh9:K/uxawgBU8x2yIcpuUVl8E1bS7
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy