4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

4281e89744...00.exe

windows7-x64

4281e89744...00.exe

windows10-2004-x64

Sharing

General

Target

4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00
Size

72KB
Sample

240601-zgdcysed4t
MD5

12f16883c1226ef95d7dc599226650ec
SHA1

ef53c25d134dce012c2311bfaf97e8e14eabdb84
SHA256

4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00
SHA512

0cec5479e2aa0615db0f4537bd4cfffd36d6adb1cbf901caa6eea7a10a1d02b7ce19ed8dad4d18e2ca48aeab5798336bee700602bee95cf4e41a62d9bfdf9b9b
SSDEEP

384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2Z:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPt

Score

10^/10

evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00.exe

Resource

win7-20240508-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00
- Size
  
  72KB
- MD5
  
  12f16883c1226ef95d7dc599226650ec
- SHA1
  
  ef53c25d134dce012c2311bfaf97e8e14eabdb84
- SHA256
  
  4281e89744b85610b6ffe357054c6c16b761a3042fc7e024f5790926f1566b00
- SHA512
  
  0cec5479e2aa0615db0f4537bd4cfffd36d6adb1cbf901caa6eea7a10a1d02b7ce19ed8dad4d18e2ca48aeab5798336bee700602bee95cf4e41a62d9bfdf9b9b
- SSDEEP
  
  384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2Z:ipQNwC3BEddsEqOt/hyJF+x3BEJwRrPt
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy