42c03e96b374af4b7b4e56dd60cdb9309293c50f2ba081667081f563d22a8d5b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

Sparlock1.html

windows11-21h2-x64

7

Sharing

General

Target

Sparlock1.rar
Size

111KB
Sample

240613-neex8azhmp
MD5

ad93dd7cbf00385935fe9fcf46a00dbe
SHA1

dda56e6ff55905492d6276375ccddb6332671ad4
SHA256

42c03e96b374af4b7b4e56dd60cdb9309293c50f2ba081667081f563d22a8d5b
SHA512

9a26ca1767988de74dcd6940e59458f227c7b6435230473e64fed0f01d9ebb904967027af30d5fd036c257cace356b50c2e7878ec4fd1f9faa29725a4c5fdca5
SSDEEP

3072:dB4Agw3GLbdIGZ8+kQ2Z6u6nOrsIyVJn38EhynIw6pnnoQdDX4MJNt4oNF5OlCVP:d9sIyznfv9OlCx

Score

7^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

Sparlock1.html

Resource

win11-20240611-en

discovery persistence

windows11-21h2-x64

23 signatures

300 seconds

Malware Config

Targets

- Target
  
  Sparlock1.rar
- Size
  
  111KB
- MD5
  
  ad93dd7cbf00385935fe9fcf46a00dbe
- SHA1
  
  dda56e6ff55905492d6276375ccddb6332671ad4
- SHA256
  
  42c03e96b374af4b7b4e56dd60cdb9309293c50f2ba081667081f563d22a8d5b
- SHA512
  
  9a26ca1767988de74dcd6940e59458f227c7b6435230473e64fed0f01d9ebb904967027af30d5fd036c257cace356b50c2e7878ec4fd1f9faa29725a4c5fdca5
- SSDEEP
  
  3072:dB4Agw3GLbdIGZ8+kQ2Z6u6nOrsIyVJn38EhynIw6pnnoQdDX4MJNt4oNF5OlCVP:d9sIyznfv9OlCx
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

File and Directory Permissions Modification

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

© 2018-2025

Terms | Privacy