1eb150dcd339c526488a65e6f10fbb64df8a3270e7ca25aa9f2178059694b922 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

PERM.exe

windows7-x64

PERM.exe

windows10-2004-x64

8

Sharing

General

Target

PERM.exe
Size

55KB
Sample

240311-d9jvjsbc69
MD5

85b585743ed348bfe01fe55bb3b8d331
SHA1

98dea1e5fb2a45af6781fe3aabb72cc620e33074
SHA256

1eb150dcd339c526488a65e6f10fbb64df8a3270e7ca25aa9f2178059694b922
SHA512

df5a718d84cecb3e06a7c7e3459ba17f279fb062f0e944febb532b2378aac6e21f317040a00b522f7a31c96741f6aa96c9829b5904672c8b892e17ef31789af9
SSDEEP

768:Oo+PpCXSSzkvdWoqPAxxlCB6J4ki1NKD3y031xJR+E5HNjc:d+hCXgv05Iny6JI4TJR+W

Score

8^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PERM.exe

Resource

win7-20240215-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

PERM.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  PERM.exe
- Size
  
  55KB
- MD5
  
  85b585743ed348bfe01fe55bb3b8d331
- SHA1
  
  98dea1e5fb2a45af6781fe3aabb72cc620e33074
- SHA256
  
  1eb150dcd339c526488a65e6f10fbb64df8a3270e7ca25aa9f2178059694b922
- SHA512
  
  df5a718d84cecb3e06a7c7e3459ba17f279fb062f0e944febb532b2378aac6e21f317040a00b522f7a31c96741f6aa96c9829b5904672c8b892e17ef31789af9
- SSDEEP
  
  768:Oo+PpCXSSzkvdWoqPAxxlCB6J4ki1NKD3y031xJR+E5HNjc:d+hCXgv05Iny6JI4TJR+W
Score

8^/10
- Blocklisted process makes network request
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy