4069a42edaa5885d31a1fcb710d13fef98f7b601e15b4b0f311c290381c5f21e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

SCP600_Combo_NA.exe

windows11-21h2-x64

8

Sharing

General

Target

SCP600_Combo_NA.exe
Size

125.9MB
Sample

240429-p4hwvabd6v
MD5

782ab4831e7ce9ab9c9397441f84eb99
SHA1

e46fe883e2cb39bbcae699b00ad8150277db6531
SHA256

4069a42edaa5885d31a1fcb710d13fef98f7b601e15b4b0f311c290381c5f21e
SHA512

7f3dafd591703d745a80cc3b874bd1f4678a3402e227ad0638d19386c10844ec58d83e77f3f6ca89eee86922769b5f2e6fb2d0cef7b1c8c21be53f1d6279d5f3
SSDEEP

3145728:VfhDJooW1Lwyn3y3MBTCN8ySLMZcXoczQiKP9b6pEszlP4GH463tPJ6iuD9yk1:5tJMUyn/CN8fQZozFKBrsBLVxci+Yk1

Score

8^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

SCP600_Combo_NA.exe

Resource

win11-20240419-en

discovery persistence

windows11-21h2-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  SCP600_Combo_NA.exe
- Size
  
  125.9MB
- MD5
  
  782ab4831e7ce9ab9c9397441f84eb99
- SHA1
  
  e46fe883e2cb39bbcae699b00ad8150277db6531
- SHA256
  
  4069a42edaa5885d31a1fcb710d13fef98f7b601e15b4b0f311c290381c5f21e
- SHA512
  
  7f3dafd591703d745a80cc3b874bd1f4678a3402e227ad0638d19386c10844ec58d83e77f3f6ca89eee86922769b5f2e6fb2d0cef7b1c8c21be53f1d6279d5f3
- SSDEEP
  
  3145728:VfhDJooW1Lwyn3y3MBTCN8ySLMZcXoczQiKP9b6pEszlP4GH463tPJ6iuD9yk1:5tJMUyn/CN8fQZozFKBrsBLVxci+Yk1
Score

8^/10

discovery persistence
- Downloads MZ/PE file
- Registers new Print Monitor
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Blocklisted process makes network request
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

© 2018-2025

Terms | Privacy