94ddd75e2b90309b75db6dbda7d8103fcebda4495b579695e925e885d2b92704 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

basic-mikt...64.exe

windows10-1703-x64

7

basic-mikt...64.exe

windows10-2004-x64

7

Sharing

General

Target

basic-miktex-24.1-x64.exe
Size

138.1MB
Sample

240314-x5tczach3t
MD5

9c57471aee703f5937d6f1787b73b4bc
SHA1

763a7e783e2e7582994c46deddffdb95b79afced
SHA256

94ddd75e2b90309b75db6dbda7d8103fcebda4495b579695e925e885d2b92704
SHA512

5686f5fc9aba3689af3c9196b09f71d9c96c12da431c5170d722df0aefb6527ad6d185c8d9f80c75c8bb472cf45b3748e2079d1f2c26b4541b04e0efcf092f4a
SSDEEP

3145728:E/3xu3Sp/qWOZ37UWu7yo5r2biR1owk8m9NM04Z:yBtiWmIEo5OiR1owk8aMzZ

Score

7^/10

discovery persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

basic-miktex-24.1-x64.exe

Resource

win10-20240221-en

discovery persistence

windows10-1703-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

basic-miktex-24.1-x64.exe

Resource

win10v2004-20231215-en

discovery persistence

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  basic-miktex-24.1-x64.exe
- Size
  
  138.1MB
- MD5
  
  9c57471aee703f5937d6f1787b73b4bc
- SHA1
  
  763a7e783e2e7582994c46deddffdb95b79afced
- SHA256
  
  94ddd75e2b90309b75db6dbda7d8103fcebda4495b579695e925e885d2b92704
- SHA512
  
  5686f5fc9aba3689af3c9196b09f71d9c96c12da431c5170d722df0aefb6527ad6d185c8d9f80c75c8bb472cf45b3748e2079d1f2c26b4541b04e0efcf092f4a
- SSDEEP
  
  3145728:E/3xu3Sp/qWOZ37UWu7yo5r2biR1owk8m9NM04Z:yBtiWmIEo5OiR1owk8aMzZ
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

© 2018-2025

Terms | Privacy