Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

emsO.exe

windows7-x64

5

emsO.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    emsO.exe

  • Size

    884KB

  • Sample

    240513-vb4whaee6y

  • MD5

    c47a7fef0ab6068c68877022965dc13d

  • SHA1

    468d6112130fc9b58092db88611d2ad53cb33a06

  • SHA256

    831f2c4f9ffdcd8a730f72abd1b8a2a716eded13ef33876ed6f704d09027033d

  • SHA512

    f2e7d82f30b359b7d55f99c1fcd5a5680376e3c26b9b10b74f5ee6789480d7f4ab3586d62a85d446db9ba019528b77c4069765ea258c3f2df742f974c07a6d03

  • SSDEEP

    12288:fChkTeH81jJUS5ZsNXTkuF/bbXEQoR1aWX9MbGU6qG/ux5VWYcvyE1tHiwSQYiMo:I8MS5ETzbb6trU6x/ux5VWYcj3

Score
5/10

Malware Config

Targets

    • Target

      emsO.exe

    • Size

      884KB

    • MD5

      c47a7fef0ab6068c68877022965dc13d

    • SHA1

      468d6112130fc9b58092db88611d2ad53cb33a06

    • SHA256

      831f2c4f9ffdcd8a730f72abd1b8a2a716eded13ef33876ed6f704d09027033d

    • SHA512

      f2e7d82f30b359b7d55f99c1fcd5a5680376e3c26b9b10b74f5ee6789480d7f4ab3586d62a85d446db9ba019528b77c4069765ea258c3f2df742f974c07a6d03

    • SSDEEP

      12288:fChkTeH81jJUS5ZsNXTkuF/bbXEQoR1aWX9MbGU6qG/ux5VWYcvyE1tHiwSQYiMo:I8MS5ETzbb6trU6x/ux5VWYcj3

    Score
    5/10

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks