b004c0684a3609f4fc2c7bf6ffe393a84ca5f429db06946b7b1ba5df9f9ee7bd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

rc2.exe

windows11-21h2-x64

7

Sharing

General

Target

rc2.exe
Size

153KB
Sample

240528-1zzvcafe25
MD5

100413b6e46ea24ae41309be5fa6cc69
SHA1

9f19824fb26d6d64e1514be73d82e30327a5ae27
SHA256

b004c0684a3609f4fc2c7bf6ffe393a84ca5f429db06946b7b1ba5df9f9ee7bd
SHA512

aefb10961566176d676d7720a9c31697c0b8e8a311f657ea8597f6133a418dc16b9a7feac39b7ee7df7c8adf2505d25079be447e7c5964c0f469f6962a951b7b
SSDEEP

3072:qv6OT5AKet1dYoy62wReZ4QAKgx3cjjLmoWv8prhN:DOWrt1dYoyJwpQAR6WoWkT

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

rc2.exe

Resource

win11-20240419-en

windows11-21h2-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  rc2.exe
- Size
  
  153KB
- MD5
  
  100413b6e46ea24ae41309be5fa6cc69
- SHA1
  
  9f19824fb26d6d64e1514be73d82e30327a5ae27
- SHA256
  
  b004c0684a3609f4fc2c7bf6ffe393a84ca5f429db06946b7b1ba5df9f9ee7bd
- SHA512
  
  aefb10961566176d676d7720a9c31697c0b8e8a311f657ea8597f6133a418dc16b9a7feac39b7ee7df7c8adf2505d25079be447e7c5964c0f469f6962a951b7b
- SSDEEP
  
  3072:qv6OT5AKet1dYoy62wReZ4QAKgx3cjjLmoWv8prhN:DOWrt1dYoyJwpQAR6WoWkT
Score

7^/10
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy