ff8ba81e6c8558f793a41355f5a88dda5cb0fc17f5fb601912ea7e421ca469e4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

creepypasta virus.exe

windows7-x64

8

creepypasta virus.exe

windows10-2004-x64

8

Sharing

General

Target

creepypasta virus.exe
Size

73.1MB
Sample

240808-m6f4xswepe
MD5

fafedc86e931a34ae8880b62913ec8b8
SHA1

d9c8a5264941f66446e1ed5831d9fd58527160c7
SHA256

ff8ba81e6c8558f793a41355f5a88dda5cb0fc17f5fb601912ea7e421ca469e4
SHA512

d4182c3cd900433608ad288a3f5b09402396cdf76ee0fe51b335c5fe6c9639655c7970102fe2237d0812a18dcb2e5f21991628e6ea19fb2ed4a31f1cce9479b4
SSDEEP

1572864:EWWQfapBZJbujGp5AuYS2aTjWWQfapBZJbujGp5AuYS2aT:lapBZJbujGpCVTapBZJbujGpCV

Score

8^/10

discovery evasion persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

creepypasta virus.exe

Resource

win7-20240704-en

discovery evasion persistence

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

creepypasta virus.exe

Resource

win10v2004-20240802-en

discovery evasion persistence

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  creepypasta virus.exe
- Size
  
  73.1MB
- MD5
  
  fafedc86e931a34ae8880b62913ec8b8
- SHA1
  
  d9c8a5264941f66446e1ed5831d9fd58527160c7
- SHA256
  
  ff8ba81e6c8558f793a41355f5a88dda5cb0fc17f5fb601912ea7e421ca469e4
- SHA512
  
  d4182c3cd900433608ad288a3f5b09402396cdf76ee0fe51b335c5fe6c9639655c7970102fe2237d0812a18dcb2e5f21991628e6ea19fb2ed4a31f1cce9479b4
- SSDEEP
  
  1572864:EWWQfapBZJbujGp5AuYS2aTjWWQfapBZJbujGp5AuYS2aT:lapBZJbujGpCVTapBZJbujGpCV
Score

8^/10

discovery evasion persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasionpersistence

© 2018-2025

Terms | Privacy