fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

fe30a9f27e...34.exe

windows7-x64

9

fe30a9f27e...34.exe

windows10-2004-x64

9

Sharing

General

Target

fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34
Size

121KB
Sample

240524-gh8alsff51
MD5

1ad00bf27488f759b6a5e2f5ca7c55fe
SHA1

05a7c30d3645d0c5b216959b6e499e6fc5e1e256
SHA256

fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34
SHA512

0dd860c2326d9c3bd1957f806d6adb5e3081452836cca1f2e8ed1db76c4b750babb90d61fbcdb7bfebe5bcf676168aea91d9f3e6c87e13b121594f4e55ab1931
SSDEEP

3072:HQC/yj5JO3MnqG+Hu54Fx4xE8plZQKbgZi1St7xj:wlj7cMnT+OEXAwKbgZZ

Score

10^/10

persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34.exe

Resource

win7-20240215-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34
- Size
  
  121KB
- MD5
  
  1ad00bf27488f759b6a5e2f5ca7c55fe
- SHA1
  
  05a7c30d3645d0c5b216959b6e499e6fc5e1e256
- SHA256
  
  fe30a9f27e2444f4a669c6e7586836293f048403ef29cd88ea50c6e36dcfba34
- SHA512
  
  0dd860c2326d9c3bd1957f806d6adb5e3081452836cca1f2e8ed1db76c4b750babb90d61fbcdb7bfebe5bcf676168aea91d9f3e6c87e13b121594f4e55ab1931
- SSDEEP
  
  3072:HQC/yj5JO3MnqG+Hu54Fx4xE8plZQKbgZi1St7xj:wlj7cMnT+OEXAwKbgZZ
Score

9^/10

persistence
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy