ae0fb0cb24696eb2b1f11ee00f7cad4b8bda35f8e6172511785aef132f6322d6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

efb0c5aa5b...0N.exe

windows7-x64

7

efb0c5aa5b...0N.exe

windows10-2004-x64

7

Sharing

General

Target

efb0c5aa5b5273176f7f41054f622380N.exe
Size

508KB
Sample

240822-xtcwvawalj
MD5

efb0c5aa5b5273176f7f41054f622380
SHA1

04618613ca757544da4ca71e073d43867689304b
SHA256

ae0fb0cb24696eb2b1f11ee00f7cad4b8bda35f8e6172511785aef132f6322d6
SHA512

d790a7f8b6405f58d6620018b5c5704ad6c30aa0cc9c522c627033f1741d3bbaef57d688aea2688f9b914bb952a0f65e2509aecffda428a9a439409b5422fe65
SSDEEP

12288:ChL7TwSoeD2Rt3knwbsKt4tj+xtrYxCQH:Cd7T6eTItrYFH

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

efb0c5aa5b5273176f7f41054f622380N.exe

Resource

win7-20240708-en

windows7-x64

11 signatures

120 seconds

Behavioral task

behavioral2

Sample

efb0c5aa5b5273176f7f41054f622380N.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  efb0c5aa5b5273176f7f41054f622380N.exe
- Size
  
  508KB
- MD5
  
  efb0c5aa5b5273176f7f41054f622380
- SHA1
  
  04618613ca757544da4ca71e073d43867689304b
- SHA256
  
  ae0fb0cb24696eb2b1f11ee00f7cad4b8bda35f8e6172511785aef132f6322d6
- SHA512
  
  d790a7f8b6405f58d6620018b5c5704ad6c30aa0cc9c522c627033f1741d3bbaef57d688aea2688f9b914bb952a0f65e2509aecffda428a9a439409b5422fe65
- SSDEEP
  
  12288:ChL7TwSoeD2Rt3knwbsKt4tj+xtrYxCQH:Cd7T6eTItrYFH
Score

7^/10

discovery upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy