06865d92d6a9cd6d76140284035a621e9907d85666eb043a3453bb6f7d1d05f9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

privacy-script.bat

windows10-1703-x64

7

Resubmissions

11/03/2024, 07:16

240311-h3w9hsef73 7

11/03/2024, 06:55

240311-hp1d1seg8z 7

Sharing

General

Target

privacy-script.bat
Size

1.5MB
Sample

240311-hp1d1seg8z
MD5

4d300fa6b81b9bd8e66153d7d3d70156
SHA1

47851756d92ef3f6547c534254dd1673e9770d0e
SHA256

06865d92d6a9cd6d76140284035a621e9907d85666eb043a3453bb6f7d1d05f9
SHA512

1cec7600d6e35aaef028b90cf52a8582ae1a4a14b02f0ffa99b272c68660abe7824e1ef99c8167eb30341afce8fb4e678fa253e43f8360f5037555ba95bb8b66
SSDEEP

24576:bdMm+2Q/FQMHf+QvfOwDmcgHGReQYDacEvaWSjwegXPOwvNes7IuEbD6I/K26bYp:x

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

privacy-script.bat

Resource

win10-20240221-en

windows10-1703-x64

14 signatures

300 seconds

Malware Config

Targets

- Target
  
  privacy-script.bat
- Size
  
  1.5MB
- MD5
  
  4d300fa6b81b9bd8e66153d7d3d70156
- SHA1
  
  47851756d92ef3f6547c534254dd1673e9770d0e
- SHA256
  
  06865d92d6a9cd6d76140284035a621e9907d85666eb043a3453bb6f7d1d05f9
- SHA512
  
  1cec7600d6e35aaef028b90cf52a8582ae1a4a14b02f0ffa99b272c68660abe7824e1ef99c8167eb30341afce8fb4e678fa253e43f8360f5037555ba95bb8b66
- SSDEEP
  
  24576:bdMm+2Q/FQMHf+QvfOwDmcgHGReQYDacEvaWSjwegXPOwvNes7IuEbD6I/K26bYp:x
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy