a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e
Size

266KB
Sample

240515-g7p6bsda2s
MD5

d4087fbe41a191d5091fc88738962845
SHA1

399a79f53e0b8b5de0e6fc8186a1a9cbbb80b4b9
SHA256

a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e
SHA512

45b108d7fba0c33d100738320ffdf976f0e1009031b7b47fa56e65d0cc0a3f272693f7bad406a058ee9954effb64c3ef1c940db1094daca7c71c3f1ff84bb4cc
SSDEEP

6144:xXzKdNY49u8rVl/v9mdB7Les+eFMBxI301net:qa4AMMBu/eF+G01

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e.exe

Resource

win11-20240426-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e
- Size
  
  266KB
- MD5
  
  d4087fbe41a191d5091fc88738962845
- SHA1
  
  399a79f53e0b8b5de0e6fc8186a1a9cbbb80b4b9
- SHA256
  
  a5b8ffc8e81c22aa927dabd14f299ea1ddeb55dbf3b5b2236c82ff5fef48678e
- SHA512
  
  45b108d7fba0c33d100738320ffdf976f0e1009031b7b47fa56e65d0cc0a3f272693f7bad406a058ee9954effb64c3ef1c940db1094daca7c71c3f1ff84bb4cc
- SSDEEP
  
  6144:xXzKdNY49u8rVl/v9mdB7Les+eFMBxI301net:qa4AMMBu/eF+G01
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy