Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Resubmissions
13/05/2024, 21:12 UTC
240513-z2b1maed95 713/05/2024, 18:12 UTC
240513-wtpd7shc35 713/05/2024, 18:05 UTC
240513-wn7nlaha57 713/05/2024, 16:36 UTC
240513-t4n53sfa76 7Analysis
-
max time kernel
512s -
max time network
526s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-es -
resource tags
-
submitted
13/05/2024, 18:12 UTC
General
-
Target
upscayl-2.11.0-win.exe
-
Size
215.9MB
-
MD5
cc1999bbed7ff527716810fee45fc2da
-
SHA1
7d9b4b56b812926f7d6e6f5e17d8f64656f6c8cc
-
SHA256
8b715b2bbd7d3edd8e8dbcd3a662ea5ed7427fbab23a5e86605068c88e836258
-
SHA512
96efc404e845ff6084dda2f06970a4230cf3b49abd63a755cc31c35552b884f102ca47e08fbeeca5954edc0dca61e9d71cf46427378730c3e681d99e97216d64
-
SSDEEP
6291456:B4N+NDYj0ZpQTyN8O+dTUOB6BF31qCQ3puw3isQThWtgj7:B4oNky62eTUfqCDKi1hWtgj7
Malware Config
Signatures
-
Loads dropped DLL 3 IoCs
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
-
C:\Users\Admin\AppData\Local\Temp\upscayl-2.11.0-win.exe"C:\Users\Admin\AppData\Local\Temp\upscayl-2.11.0-win.exe"1⤵
- Loads dropped DLL
Network
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A -
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
DNSg.bing.comRemote address:8.8.8.8:53Requestg.bing.comIN A
-
8.8.8.8:53g.bing.comdns
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
-
8.8.8.8:53g.bing.comdns
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
DNS Request
g.bing.com
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
100KB
MD5c6a6e03f77c313b267498515488c5740
SHA13d49fc2784b9450962ed6b82b46e9c3c957d7c15
SHA256b72e9013a6204e9f01076dc38dabbf30870d44dfc66962adbf73619d4331601e
SHA5129870c5879f7b72836805088079ad5bbafcb59fc3d9127f2160d4ec3d6e88d3cc8ebe5a9f5d20a4720fe6407c1336ef10f33b2b9621bc587e930d4cbacf337803
-
Filesize
12KB
MD50d7ad4f45dc6f5aa87f606d0331c6901
SHA148df0911f0484cbe2a8cdd5362140b63c41ee457
SHA2563eb38ae99653a7dbc724132ee240f6e5c4af4bfe7c01d31d23faf373f9f2eaca
SHA512c07de7308cb54205e8bd703001a7fe4fd7796c9ac1b4bb330c77c872bf712b093645f40b80ce7127531fe6746a5b66e18ea073ab6a644934abed9bb64126fea9
-
Filesize
14KB
MD5adb29e6b186daa765dc750128649b63d
SHA1160cbdc4cb0ac2c142d361df138c537aa7e708c9
SHA2562f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08
SHA512b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada