cdc95d0113a2af05c2e70fab23f6c218ae583ebcb47077dd5b705a476f9d6b96 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

amtemu.v0....er.exe

windows7-x64

7

amtemu.v0....er.exe

windows10-2004-x64

7

Sharing

General

Target

amtemu.v0.9.2-painter.exe
Size

2.4MB
Sample

240721-hgwe4awale
MD5

8abdc20f619641e29aa9ad2b999a0dcc
SHA1

caad125358d2ae6d217e74cfcd175ac81c43c729
SHA256

cdc95d0113a2af05c2e70fab23f6c218ae583ebcb47077dd5b705a476f9d6b96
SHA512

90999eb0bcb76a3d21e63565e332f1ac8a6fbc1e3dfe147c4ba2b5f8c542e21da3a43df9f5074eb7f7107e0e66d48e21cedda568fa1960502645f1b358d1550e
SSDEEP

49152:+kLvWlT+7CZ1k+1T0RSkXDE+QO6oP4DQ4E7U+:+kCZ1bad4+QOJgDQI

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

amtemu.v0.9.2-painter.exe

Resource

win7-20240708-en

windows7-x64

10 signatures

600 seconds

Behavioral task

behavioral2

Sample

amtemu.v0.9.2-painter.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

600 seconds

Malware Config

Targets

- Target
  
  amtemu.v0.9.2-painter.exe
- Size
  
  2.4MB
- MD5
  
  8abdc20f619641e29aa9ad2b999a0dcc
- SHA1
  
  caad125358d2ae6d217e74cfcd175ac81c43c729
- SHA256
  
  cdc95d0113a2af05c2e70fab23f6c218ae583ebcb47077dd5b705a476f9d6b96
- SHA512
  
  90999eb0bcb76a3d21e63565e332f1ac8a6fbc1e3dfe147c4ba2b5f8c542e21da3a43df9f5074eb7f7107e0e66d48e21cedda568fa1960502645f1b358d1550e
- SSDEEP
  
  49152:+kLvWlT+7CZ1k+1T0RSkXDE+QO6oP4DQ4E7U+:+kCZ1bad4+QOJgDQI
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy