7d7e60a0fa22587c8187fd3077934bff0d596aa5c0da1767096ebbeb10a235a1 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

Revised Pu...er.exe

windows7-x64

7

Revised Pu...er.exe

windows10-2004-x64

5

Sharing

General

Target

Revised Purchase Order.exe
Size

705KB
Sample

240327-ldymtshc39
MD5

8c762ec76d202e8e5aeeefae06814bff
SHA1

b0008c82f2107bc627d2269f58858c7b0104006d
SHA256

7d7e60a0fa22587c8187fd3077934bff0d596aa5c0da1767096ebbeb10a235a1
SHA512

f7a6dfca98a6847bf8df390f95c298e06001ad94d28672ba50fa60d5ab48384dedbbfe77c2063cc0135d329881a76a35514dd019d03fda7cf796ff13dfe62be4
SSDEEP

12288:nvM2iNlw0HXUxzzRmb/kGTzdIPqBN09jW6qjrRSlo7qyTwDgWMQ8WeikR:U1XP6zcoYdIKN09jW6qxXTOgwJeR

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

Revised Purchase Order.exe

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Revised Purchase Order.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Revised Purchase Order.exe
- Size
  
  705KB
- MD5
  
  8c762ec76d202e8e5aeeefae06814bff
- SHA1
  
  b0008c82f2107bc627d2269f58858c7b0104006d
- SHA256
  
  7d7e60a0fa22587c8187fd3077934bff0d596aa5c0da1767096ebbeb10a235a1
- SHA512
  
  f7a6dfca98a6847bf8df390f95c298e06001ad94d28672ba50fa60d5ab48384dedbbfe77c2063cc0135d329881a76a35514dd019d03fda7cf796ff13dfe62be4
- SSDEEP
  
  12288:nvM2iNlw0HXUxzzRmb/kGTzdIPqBN09jW6qjrRSlo7qyTwDgWMQ8WeikR:U1XP6zcoYdIKN09jW6qxXTOgwJeR
Score

7^/10
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy