654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

654e905745...4a.exe

windows7-x64

7

654e905745...4a.exe

windows10-2004-x64

7

Sharing

General

Target

654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a
Size

77KB
Sample

240531-e8rdnsfc2w
MD5

65b5c90bda5728c91cb427bff02b5a27
SHA1

f6e1cc9814a6df84cc1870e8b661ec3f4abe4484
SHA256

654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a
SHA512

12b839f8f5672e5602af317b029d1a9d4289af698d2f357f0cebb3b412206198cf9eeaa4fec2a59f0f9249a5b4be776d379befe92b639974393e5ec9c0a92196
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyP2B:GhfxHNIreQm+HixP2B

Score

7^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a.exe

Resource

win7-20240419-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a
- Size
  
  77KB
- MD5
  
  65b5c90bda5728c91cb427bff02b5a27
- SHA1
  
  f6e1cc9814a6df84cc1870e8b661ec3f4abe4484
- SHA256
  
  654e905745a48a3b797e31ccfb4ad6fd5b2988529e03f9813a8d0698b419244a
- SHA512
  
  12b839f8f5672e5602af317b029d1a9d4289af698d2f357f0cebb3b412206198cf9eeaa4fec2a59f0f9249a5b4be776d379befe92b639974393e5ec9c0a92196
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOyP2B:GhfxHNIreQm+HixP2B
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.