715953bed5da7aaf7e7290af0c5509b06b9cf9ad38f28d1921bc071f57540a23 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

ab24ea80ba...0N.exe

windows7-x64

ab24ea80ba...0N.exe

windows10-2004-x64

Sharing

General

Target

ab24ea80ba1e6a8ceb478996fc505950N.exe
Size

263KB
Sample

240816-2kv4aa1gnh
MD5

ab24ea80ba1e6a8ceb478996fc505950
SHA1

13c4ab0c82d5a19cba6484925016aca01ee1a874
SHA256

715953bed5da7aaf7e7290af0c5509b06b9cf9ad38f28d1921bc071f57540a23
SHA512

14cb98f1349cfde11f272de42ec2d97a4777d9acac2d9f3cc6c90ff4e0120a1e01bdcc57e30291b7272a8d67e123cb24bc07b7fcdcd2bf823b4c33054a57ae89
SSDEEP

3072:fmVwRKCG/mVwT7hKcYH2f1nZis0PBvEmVwRJ4:fmVnD/mVO7hKcYH2f1nAs0PBvEmVW4

Score

10^/10

discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ab24ea80ba1e6a8ceb478996fc505950N.exe

Resource

win7-20240704-en

discovery evasion upx

windows7-x64

13 signatures

120 seconds

Behavioral task

behavioral2

Sample

ab24ea80ba1e6a8ceb478996fc505950N.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

13 signatures

120 seconds

Malware Config

Targets

- Target
  
  ab24ea80ba1e6a8ceb478996fc505950N.exe
- Size
  
  263KB
- MD5
  
  ab24ea80ba1e6a8ceb478996fc505950
- SHA1
  
  13c4ab0c82d5a19cba6484925016aca01ee1a874
- SHA256
  
  715953bed5da7aaf7e7290af0c5509b06b9cf9ad38f28d1921bc071f57540a23
- SHA512
  
  14cb98f1349cfde11f272de42ec2d97a4777d9acac2d9f3cc6c90ff4e0120a1e01bdcc57e30291b7272a8d67e123cb24bc07b7fcdcd2bf823b4c33054a57ae89
- SSDEEP
  
  3072:fmVwRKCG/mVwT7hKcYH2f1nZis0PBvEmVwRJ4:fmVnD/mVO7hKcYH2f1nAs0PBvEmVW4
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy