de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10
Size

266KB
Sample

240502-s2r9aaca6z
MD5

f3c33babb56b25decd56551a2cc98416
SHA1

cf661910b167cf838f2e9e9de3ba6a25303ef905
SHA256

de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10
SHA512

a155810823f1b9bb86d38bfa225be8d5e386ff19195b8693c969434ec65a6a593d7e0ca4c6cb3777b9fb3e598dc248c3dafa723bb80f3d6ee6e8eb13bb996916
SSDEEP

3072:hNXEGZJWhfNFC4S60+XoLczrVmXaqdOUrWKK8/3UuwiDIAkJhgDdzWH01ne4PK:/XzKdNY49u8rVYb6ypDIAygDo01net

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10.exe

Resource

win11-20240419-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10
- Size
  
  266KB
- MD5
  
  f3c33babb56b25decd56551a2cc98416
- SHA1
  
  cf661910b167cf838f2e9e9de3ba6a25303ef905
- SHA256
  
  de5f5ddca7bfb0f52f6cc0a3ab3c04c27009f5d59c86f3de2c2523f353792e10
- SHA512
  
  a155810823f1b9bb86d38bfa225be8d5e386ff19195b8693c969434ec65a6a593d7e0ca4c6cb3777b9fb3e598dc248c3dafa723bb80f3d6ee6e8eb13bb996916
- SSDEEP
  
  3072:hNXEGZJWhfNFC4S60+XoLczrVmXaqdOUrWKK8/3UuwiDIAkJhgDdzWH01ne4PK:/XzKdNY49u8rVYb6ypDIAygDo01net
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy