43e3c32bd62bd9eb8796d8ccabcd8e5ecc352b9a7114835c0e45c8631ea85925 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

robloxapp-...11.mp4

windows7-x64

8

robloxapp-...11.mp4

windows10-2004-x64

6

Sharing

General

Target

robloxapp-20240613-0023411.mp4
Size

3.1MB
Sample

240703-zx4vvayeqg
MD5

fb4c6c7337a7442d3bdaf360180d29a0
SHA1

3d5985640a5f69a15ac63863a6f632aeadafe3b1
SHA256

43e3c32bd62bd9eb8796d8ccabcd8e5ecc352b9a7114835c0e45c8631ea85925
SHA512

ae7a777e026d1ab6f74ed110be65d3bc6fa01f5e45c236092cd5aa2a15303f0128a83861786476877ec134d8abf62767a871b455ddbc1201d7af5ef747172014
SSDEEP

49152:h0nBDt8on9j0lQcFybL5tOj8ZyAueN+SLafSU6Z8VrMoKWOwT+gZXU0n:h0BDtD9mQAyHO5AUSLeSeVVT7JLn

Score

8^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

robloxapp-20240613-0023411.mp4

Resource

win7-20240221-en

windows7-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

robloxapp-20240613-0023411.mp4

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  robloxapp-20240613-0023411.mp4
- Size
  
  3.1MB
- MD5
  
  fb4c6c7337a7442d3bdaf360180d29a0
- SHA1
  
  3d5985640a5f69a15ac63863a6f632aeadafe3b1
- SHA256
  
  43e3c32bd62bd9eb8796d8ccabcd8e5ecc352b9a7114835c0e45c8631ea85925
- SHA512
  
  ae7a777e026d1ab6f74ed110be65d3bc6fa01f5e45c236092cd5aa2a15303f0128a83861786476877ec134d8abf62767a871b455ddbc1201d7af5ef747172014
- SSDEEP
  
  49152:h0nBDt8on9j0lQcFybL5tOj8ZyAueN+SLafSU6Z8VrMoKWOwT+gZXU0n:h0BDtD9mQAyHO5AUSLeSeVVT7JLn
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy