816c9e38ede97f14aa661e70e7f49cac2de2201bc4dbce43379104cbf9328d67 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

c7c88080c8...0N.exe

windows7-x64

c7c88080c8...0N.exe

windows10-2004-x64

Sharing

General

Target

c7c88080c8171fb0d25ae10cc37d15e0N.exe
Size

85KB
Sample

240821-gw3maatbma
MD5

c7c88080c8171fb0d25ae10cc37d15e0
SHA1

3da4a57c54e51c16a076d3d35e4f350371e5d964
SHA256

816c9e38ede97f14aa661e70e7f49cac2de2201bc4dbce43379104cbf9328d67
SHA512

da15071f7de1845bc6c9a655a458bb7a151252b9a5bd77fed14068b02d04c8d8148ae9175df2d259f728042edb43bc17cb91900ca564ed89e4a079cae10e619b
SSDEEP

768:8qnum1opQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmR:8vm1AeT7BVwxfvLFwjRR

Score

10^/10

discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c7c88080c8171fb0d25ae10cc37d15e0N.exe

Resource

win7-20240704-en

discovery evasion upx

windows7-x64

14 signatures

120 seconds

Behavioral task

behavioral2

Sample

c7c88080c8171fb0d25ae10cc37d15e0N.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

13 signatures

120 seconds

Malware Config

Targets

- Target
  
  c7c88080c8171fb0d25ae10cc37d15e0N.exe
- Size
  
  85KB
- MD5
  
  c7c88080c8171fb0d25ae10cc37d15e0
- SHA1
  
  3da4a57c54e51c16a076d3d35e4f350371e5d964
- SHA256
  
  816c9e38ede97f14aa661e70e7f49cac2de2201bc4dbce43379104cbf9328d67
- SHA512
  
  da15071f7de1845bc6c9a655a458bb7a151252b9a5bd77fed14068b02d04c8d8148ae9175df2d259f728042edb43bc17cb91900ca564ed89e4a079cae10e619b
- SSDEEP
  
  768:8qnum1opQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmR:8vm1AeT7BVwxfvLFwjRR
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy