Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

5be6e2c83e...0N.exe

windows7-x64

7

5be6e2c83e...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5be6e2c83e2ed19e4b2c9ea83b734860N.exe

  • Size

    497KB

  • Sample

    240724-hjm7hawdnd

  • MD5

    5be6e2c83e2ed19e4b2c9ea83b734860

  • SHA1

    f1e4b6ef5b36d2098b652fd2ee5c2bad936ef7dc

  • SHA256

    140c37210d057d81b9e7a8a6c63483699812bf1b12dcd3f634bac5f8918ba896

  • SHA512

    c051251bb6d8dd4e79aaa50f1a7450e3954c2168ebd68c3589cb2a03c24183d1c920925aa4727609aa2b1924f2ff9a48379273084b44755916bd9d011b140f03

  • SSDEEP

    6144:yiNjjdOCJnUNKMEPDGeoo1HyisWW4g0QTxbGctE6Jm20tdVgWwAidpNCgrBF:TjjwULQoN84XQT08JoVgWwAkAQ

Score
7/10
aspackv2discoverypersistence

Malware Config

Targets

    • Target

      5be6e2c83e2ed19e4b2c9ea83b734860N.exe

    • Size

      497KB

    • MD5

      5be6e2c83e2ed19e4b2c9ea83b734860

    • SHA1

      f1e4b6ef5b36d2098b652fd2ee5c2bad936ef7dc

    • SHA256

      140c37210d057d81b9e7a8a6c63483699812bf1b12dcd3f634bac5f8918ba896

    • SHA512

      c051251bb6d8dd4e79aaa50f1a7450e3954c2168ebd68c3589cb2a03c24183d1c920925aa4727609aa2b1924f2ff9a48379273084b44755916bd9d011b140f03

    • SSDEEP

      6144:yiNjjdOCJnUNKMEPDGeoo1HyisWW4g0QTxbGctE6Jm20tdVgWwAidpNCgrBF:TjjwULQoN84XQT08JoVgWwAkAQ

    Score
    7/10
    aspackv2discoverypersistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks