271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

271c0692f5...0d.exe

windows7-x64

271c0692f5...0d.exe

windows10-2004-x64

Sharing

General

Target

271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d
Size

72KB
Sample

240610-ypsbeayenn
MD5

19420b7851f730d931a0eab917df2f8c
SHA1

3d1a716e88c768f9acb285dbf891aa6410c266b1
SHA256

271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d
SHA512

faab9fe5e761b3315c2e032c086e69fbee34c2067c1fad49e20077f6e2db4c2be0cacb3554fe6d46b00f81ca70c7e5606b10391f0c886334cd01d6a11f955b0a
SSDEEP

384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf26:ypQNwC3BEddsEqOt/hyJF+x3BEJwRrG

Score

10^/10

evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d.exe

Resource

win7-20231129-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d
- Size
  
  72KB
- MD5
  
  19420b7851f730d931a0eab917df2f8c
- SHA1
  
  3d1a716e88c768f9acb285dbf891aa6410c266b1
- SHA256
  
  271c0692f5e5b3354131f6712de44c07f576e58b29c5a3505781c64b80e1f70d
- SHA512
  
  faab9fe5e761b3315c2e032c086e69fbee34c2067c1fad49e20077f6e2db4c2be0cacb3554fe6d46b00f81ca70c7e5606b10391f0c886334cd01d6a11f955b0a
- SSDEEP
  
  384:y6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf26:ypQNwC3BEddsEqOt/hyJF+x3BEJwRrG
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy