Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

QuestPatch...1).exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    QuestPatcher-windows (1).exe

  • Size

    36.4MB

  • Sample

    240817-sxga8asgjg

  • MD5

    e53b5377cb6a95cbb2a63c9859d4c6e3

  • SHA1

    09b22e3de273f44f1882b7dfa9b53d384bd8af0f

  • SHA256

    b480c7628b6b371e53fa4e7ef1ef40c34c5ca77a80ef395e1e8c1f9387b30dab

  • SHA512

    c8187c169e05acd14b8a16fe8b3bf0c3fcf0cfa23c5b14138d198ae00677039b39389b0eb44e09c188cdf730dd716e2fbd5bc2caec7fdf1f00e9f6cf3130b5de

  • SSDEEP

    786432:jm/EohZ7ttU+9L8Z8ffoRaDMge0q65cv9E7AMNq4qut:IZJVLUeFq65tTq4ht

Score
7/10
discovery

Malware Config

Targets

    • Target

      QuestPatcher-windows (1).exe

    • Size

      36.4MB

    • MD5

      e53b5377cb6a95cbb2a63c9859d4c6e3

    • SHA1

      09b22e3de273f44f1882b7dfa9b53d384bd8af0f

    • SHA256

      b480c7628b6b371e53fa4e7ef1ef40c34c5ca77a80ef395e1e8c1f9387b30dab

    • SHA512

      c8187c169e05acd14b8a16fe8b3bf0c3fcf0cfa23c5b14138d198ae00677039b39389b0eb44e09c188cdf730dd716e2fbd5bc2caec7fdf1f00e9f6cf3130b5de

    • SSDEEP

      786432:jm/EohZ7ttU+9L8Z8ffoRaDMge0q65cv9E7AMNq4qut:IZJVLUeFq65tTq4ht

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks