ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6
Size

266KB
Sample

240511-bq3r7sfg96
MD5

961dc6a667d372b1c9bc25d85af9a4c0
SHA1

468e83e86ed07a2b59be2b48d2bdfecdf98716a4
SHA256

ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6
SHA512

c12e45c77fa64bf1c3c3ba868e539f5566a6892f82807db84f7d7c8bd9522746c19be2c3b57a024aee1404b6e43a90e751639b91a54ea6050a520812de138f90
SSDEEP

6144:6XzKdNY49u8rVY1tZKXYMlr5xuRrUn01net:5a4AtilNxP01

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6.exe

Resource

win11-20240426-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6
- Size
  
  266KB
- MD5
  
  961dc6a667d372b1c9bc25d85af9a4c0
- SHA1
  
  468e83e86ed07a2b59be2b48d2bdfecdf98716a4
- SHA256
  
  ab7cfbf5f0532f6aa7a916b9ad939c89b3ff3e65850fc5dd96e951db7dabd8d6
- SHA512
  
  c12e45c77fa64bf1c3c3ba868e539f5566a6892f82807db84f7d7c8bd9522746c19be2c3b57a024aee1404b6e43a90e751639b91a54ea6050a520812de138f90
- SSDEEP
  
  6144:6XzKdNY49u8rVY1tZKXYMlr5xuRrUn01net:5a4AtilNxP01
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy