c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

c3c41745c1...30.exe

windows7-x64

c3c41745c1...30.exe

windows10-2004-x64

Sharing

General

Target

c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830
Size

430KB
Sample

240503-dnzzmsde6z
MD5

07dd488f9d80678e2a773d3a7245f8f5
SHA1

98d333f5b33229dbc7f08c6648bfd519d0c7f58f
SHA256

c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830
SHA512

9744d16db2148145314789ad0bfa765589da8004a7472d5cfeb1f0ded1f82dfa8bf8227171b53e6bf39ba32a6664b2b7e91b0c4f11a0411316ccaab8f482e5af
SSDEEP

3072:1UbnJAOyDvT4ZzrATsk5XVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsf:eGcF6fXRs+HLlD0rN2ZwVht740Psz

Score

10^/10

persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830.exe

Resource

win7-20240221-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830
- Size
  
  430KB
- MD5
  
  07dd488f9d80678e2a773d3a7245f8f5
- SHA1
  
  98d333f5b33229dbc7f08c6648bfd519d0c7f58f
- SHA256
  
  c3c41745c1c2db2a30cee9442fe83cdbf435991eddd13ef36e25bbcfe3401830
- SHA512
  
  9744d16db2148145314789ad0bfa765589da8004a7472d5cfeb1f0ded1f82dfa8bf8227171b53e6bf39ba32a6664b2b7e91b0c4f11a0411316ccaab8f482e5af
- SSDEEP
  
  3072:1UbnJAOyDvT4ZzrATsk5XVAURfE+HAokWmvEie0RFz3yE2ZwVh16Mz7GFD0AlWsf:eGcF6fXRs+HLlD0rN2ZwVht740Psz
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy