2445cda2f498a53850e74f311574f33966bee0ffdec28030d6326a3d3dfef42c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

Planilha.exe

windows7-x64

Planilha.exe

windows10-2004-x64

Sharing

General

Target

8a3df695502d4d8e8539b45c47684dbd_JaffaCakes118
Size

334KB
Sample

240811-nxt5vsxhll
MD5

8a3df695502d4d8e8539b45c47684dbd
SHA1

d8a29986f8c6bb7ca68fb4a2ea398186fd71541a
SHA256

2445cda2f498a53850e74f311574f33966bee0ffdec28030d6326a3d3dfef42c
SHA512

b15198c09190c3dcfed8fa37d4e9b56ab727c64b321e125eed6152304ae8bd3a231b20b658d0b7026f823e961c860de2b313d9b1da497f4f8f0460b8b965846e
SSDEEP

6144:c8an/ep7wCaIHuTY7B+8eWO4XjOEs975O15CgRnsqPce5khgKBEeMrwaZj0+dQ+:cWp7dZR+T0KE2O1sgJ1h5k+KBEh0Cxdr

Score

10^/10

discovery evasion trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Planilha.exe

Resource

win7-20240704-en

discovery evasion trojan upx

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

Planilha.exe

Resource

win10v2004-20240802-en

discovery evasion trojan upx

windows10-2004-x64

19 signatures

150 seconds

Malware Config

Targets

- Target
  
  Planilha.exe
- Size
  
  344KB
- MD5
  
  89c82797051736ef6c970467dcef9ce4
- SHA1
  
  ab09e454359df1eafc76b792bc7f995939152aff
- SHA256
  
  6102b8c94a4d12e58f52b59c0f7ab814c81b57d1de1690dabf516576391dfb98
- SHA512
  
  0b4b7feef714411d210056ef4340399b7a90d7c94c3de2a5ad5beeaac62d83a4fb798c58f6dfd79bf061edc5d67ca0c78c4e80ab098da9690dc9e45b70aac09b
- SSDEEP
  
  6144:FOU1i5mpephPxslws1zJWEffD6HF8uJf+hgoB3bLu55g6RziaL3O:QU1icpSAwAJWsfD6l1DoBvu7BR
Score

10^/10

discovery evasion trojan upx
- Modifies visibility of file extensions in Explorer
  evasion
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Drops startup file
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Hide Artifacts

Hidden Files and Directories

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojanupx

behavioral2

discoveryevasiontrojanupx

© 2018-2025

Terms | Privacy