Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

chkdsk.exe

windows10-2004-x64

1

chkntfs.exe

windows10-2004-x64

1

choice.exe

windows10-2004-x64

1

cipher.exe

windows10-2004-x64

1

cleanmgr.exe

windows10-2004-x64

1

cliconfg.exe

windows10-2004-x64

1

clip.exe

windows10-2004-x64

1

cmd.exe

windows10-2004-x64

1

cmdkey.exe

windows10-2004-x64

1

cmdl32.exe

windows10-2004-x64

1

cmmon32.exe

windows10-2004-x64

1

cmstp.exe

windows10-2004-x64

1

cofire.exe

windows10-2004-x64

1

colorcpl.exe

windows10-2004-x64

1

comp.exe

windows10-2004-x64

1

compact.exe

windows10-2004-x64

1

conhost.exe

windows10-2004-x64

1

consent.exe

windows10-2004-x64

1

control.exe

windows10-2004-x64

3

convert.exe

windows10-2004-x64

1

convertvhd.exe

windows10-2004-x64

1

coredpussvr.exe

windows10-2004-x64

1

credwiz.exe

windows10-2004-x64

1

cscript.exe

windows10-2004-x64

1

ctfmon.exe

windows10-2004-x64

1

cttune.exe

windows10-2004-x64

1

cttunesvr.exe

windows10-2004-x64

1

curl.exe

windows7-x64

1

curl.exe

windows10-2004-x64

1

dasHost.exe

windows10-2004-x64

1

dccw.exe

windows10-2004-x64

1

dcomcnfg.exe

windows10-2004-x64

5

Resubmissions

23/08/2024, 16:00

240823-tf47dsteqe 6

23/08/2024, 15:32

240823-sy293sseld 4

23/08/2024, 15:18

240823-sp1d5athqk 8

23/08/2024, 14:12

240823-rjcv7sydnd 7

23/08/2024, 02:33

240823-c17dta1cpd 7

23/08/2024, 02:11

240823-cmbpzszelg 4

23/08/2024, 02:00

240823-ce59mazbnh 4

23/08/2024, 01:37

240823-b1992a1dmm 5

23/08/2024, 01:24

240823-bsm5jazhpp 5

23/08/2024, 00:51

240823-a7p21awhld 6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Application Files - system32.zip

  • Size

    200.3MB

  • Sample

    240823-b1992a1dmm

  • MD5

    9e13c0126b7f608956f951212b77efdb

  • SHA1

    7c486a0f69ad4f21be45954df7bdc2f4ce9b0dad

  • SHA256

    b9af69ac821a649f211c99e3edf32a76a213e9450b5e972a6cdda5758af530dd

  • SHA512

    15b133823bf17179d3f806893480c77082d8a6442d885cfd5f1c77d8fdd476cafe63201fa030d60dbc812d9c9be8e8db71d83a714a4c40d8f59dbf28b9528ab5

  • SSDEEP

    6291456:nENHZIGVuWulErUOn39qvc00IYv6EbEJY7CqQubcGX:qZRulE54vcbv6tluQGX

Score
5/10
discovery

Malware Config

Targets

    • Target

      chkdsk.exe

    • Size

      48KB

    • MD5

      ff993f905e84365993204d12d63d67de

    • SHA1

      bb36d95d805516008d756ad3ad846f0b1d177d62

    • SHA256

      b825e4bb74036156a48f03eff9244091e1fc1cfd4e183062e267a6c091b7e263

    • SHA512

      71234c990e2b1a91d5cf7a2e13b5733e8086dd93f56a353e99cc524850c77b08a7e17086feb919da61d7846605b85a57eb0d5d23f55756d29a561926dd9cff15

    • SSDEEP

      384:/CFBZQDYGPE5p12t9zG3bSzjiKsXDeGC7+JWt+VuR0EdqPNiWSFqhW:KbZQcGsp2tBn7+q0eEaq

    Score
    1/10
    behavioral1

    • Target

      chkntfs.exe

    • Size

      40KB

    • MD5

      d890c40f47d8dc19eddfc22043e72327

    • SHA1

      227f195004ed5d387bd6de66028bd0731acaf8df

    • SHA256

      ea76830f1e01378f1a6b18bff71217e856cc1c89921f682cb1d817d2f02fb5b9

    • SHA512

      cdc5a2b125adde6f206e82e3f14e1ae9e4b782cb7275345b6d9b6a51864e35814e374ceae08c630c158d0c9667b1b78acab17ba91a5ef521a471583c4381fe33

    • SSDEEP

      384:vjc1L4ej8jwkXCSzKNSPQ7HBTm7Xm+TxuNMWC6W:L3DGXsQ7Hxm73YC

    Score
    1/10
    behavioral2

    • Target

      choice.exe

    • Size

      52KB

    • MD5

      ae6dd84bc45bf46f41d511f84bdc351b

    • SHA1

      93d409d9b6aea94d7e28d192a125c51db88638dc

    • SHA256

      b6ea2f9d8f0777d50c4201d7ad30d27f75987618eb1cc0eaa7712cf268707a8e

    • SHA512

      1f3ebfa7f312499c6ef210519a57d63a455b8f00a92b42d88d880b8ff8dcb134ee27cd7de5fecd87ee5b20add5f027edfb6dc08f60e7f3edf8aad8841e6b54a6

    • SSDEEP

      768:EuwgITA7k6Prbv3OUInxzIwZtFr/EP9or/Yh4Rr9U4xoNca3/:EueA7JjzfIFhtxsPGr/Tzxo6a3/

    Score
    1/10
    behavioral3

    • Target

      cipher.exe

    • Size

      72KB

    • MD5

      aae00cbbca3a919ba67b9ce6b46f0660

    • SHA1

      6408ea817df70b287db58d4693fd45d48d05065c

    • SHA256

      8a939f48d396436c4e905f179ce961897bc552ebb818e387154f5d190f1f7532

    • SHA512

      90b72a51b07216edcbc4dce897a95b25dc476d7b9de216659ac272501092ddc4e7fd459950498e786a7ae80cbc46957decca38ba4cf51c363820b5c687d4dd05

    • SSDEEP

      768:dTRIRTMysUPAcxla6Hp5L9WLMwfULLl95yCAkmH1BhhVNa8xyY+O7EKV+7r7des:dTRy8UPHHpKIrqfVlVNhqt46FI

    Score
    1/10
    behavioral4

    • Target

      cleanmgr.exe

    • Size

      292KB

    • MD5

      598f81232e931870f68b6751bd4f7492

    • SHA1

      3e18b3db15ffcf9a2e8441426756db3f34c5be00

    • SHA256

      80cf87021dfcb4513845958e6b525a272910bb9afca853ca2f877cd25ec729ba

    • SHA512

      29921555881906f835a238f10f5115b427da2b3c7530c88c370566b215ad0588829f3a254d671464dee3697a977bc050bd9b33f799e35b140e85d38d58a1787f

    • SSDEEP

      6144:MXAX55UXr8cYEswTXE+ohSKq99UF5hvv/:MXAX5mrLlTXy4Qn

    Score
    1/10
    behavioral5

    • Target

      cliconfg.exe

    • Size

      48KB

    • MD5

      5f20521f29d5eaebd4f887a644da71e7

    • SHA1

      4fc97854d01490f3472eb28ae4c7254b2f1955a5

    • SHA256

      879e6ac418729fbec424f618633f6c4ec5af477470bc575ecb26e1669a09d1a0

    • SHA512

      0cb91f55f1f5295f4ef03875070d02b4fae619d343da85088471aa080e5cb63d38d2593ad41293284844a3850fc0b3db71d00f282a30ae76579661a1d01e0186

    • SSDEEP

      384:E1/O/S+0OmD6l5b73Lw6mwARWkwWVPXuNvBQAMYJQ2JQSkdowyo:d/iD6l5v3LcJBLuI30lJBkvT

    Score
    1/10
    behavioral6

    • Target

      clip.exe

    • Size

      52KB

    • MD5

      c2f44ea3178b834ca71418841238d09f

    • SHA1

      984dc0069d84bfe7a1f741fda6bbd7c9f7c270af

    • SHA256

      3cfc03ac663a4ea6b078eeb2fd9245294dee402376c52ebfef3a218cbbdbaefc

    • SHA512

      f2f37ae6444928716804212bbfeaa000fa5627f06a243c9bebc167d29fa4604a809f7278cd61a97320f285b37319c7648af7904bf2094cbf03742a639287cbb3

    • SSDEEP

      1536:4e9J8Ch6nlUHeGajfdsOTl87pmeflZOxscd2o:b95h6nlUHeGajfdsOT4kxsch

    Score
    1/10
    behavioral7

    • Target

      cmd.exe

    • Size

      316KB

    • MD5

      428cec6b0034e0f183eb5bae887be480

    • SHA1

      7140caf2a73676d1f7cd5e8529db861f4704c939

    • SHA256

      3f6aa206177bebb29fc534c587a246e0f395941640f3f266c80743af95a02150

    • SHA512

      509b8c138c4928524b4830488a96bd7e4bc7db2c494b10c68e1edcf7d901879126168eaa6635818d29734540f8400e376e5716a3b4dc052cba4e267bbaad7253

    • SSDEEP

      6144:R7yQ7lW6U+TSC+5EGZKScVkWIFx69gKZHhopOJ4Jto2OIuvXqmm:R7y0GsSp5EGZVcVkWInWgKhxNvXqm

    Score
    1/10
    behavioral8

    • Target

      cmdkey.exe

    • Size

      44KB

    • MD5

      9f7d571f0a641aab8871c3f4afeb2731

    • SHA1

      88fcbd42f8e56c5518e4e2c0c97380c51298f575

    • SHA256

      85bfc4848711618d0636bc03ac0bab9de7a5f01e5bc402c3c3e7bc3dd5924e8b

    • SHA512

      d57dd0698b6854265eba4a9c80cffafbd67428f38e8ed0513bcddd532468e6290b1f38655d44c375568eab9699f6e815f061921c98b231d370861c4f59c82154

    • SSDEEP

      384:DkvKugGGgU4sFq5a2odLAqb/vBYQ/OP1lDprjmxE7G49WHwW:D0PU4qd5n4lDNL7G4i

    Score
    1/10
    behavioral9

    • Target

      cmdl32.exe

    • Size

      72KB

    • MD5

      96c4b87a5097cd4292a797974c8dba69

    • SHA1

      9f6879662438ac495ca6df6d029baebf719b78a9

    • SHA256

      22d7a850f5d5e0ed28028a649bf783947c223551b24f2b3375c8169a924e2d5a

    • SHA512

      737731adb988433092b1d1914c1f016f810446b1f858f95565981e2e115b5f18927f50391eaa879871be7625c65621051aaebff978a01907bbb3bdc261eae794

    • SSDEEP

      1536:4/WilB9CQHqoFrB0Pd/afXaCmacswTeVkheKd+6s7hnKuI:4/zlBczo1B0LPsGeKd+6s7hhI

    Score
    1/10
    behavioral10

    • Target

      cmmon32.exe

    • Size

      64KB

    • MD5

      c9532e581b8bd9a403c7d40ec4470e26

    • SHA1

      0b5355bcda8834a307df7ae26ab4853c4e6d401e

    • SHA256

      8be3de85f6bb6e46a1a5be3fcd9860c6d497b2f87bc6495448a9fa622befcb98

    • SHA512

      54f0e42d5e98bc79bc362004a817e93118c2177e1c861a62efe308c45f8397f8ab535bb99a674c67f4afdbbde099b0790f5ffbf47d397e50709e0ecb094d3dd0

    • SSDEEP

      768:Ugw5KMK29X6dcyMzpY9Hq4amREwOELysHDnOHh9UASnVXjNDJiy:Ug3MK29qb9cmREJsHDq9GzNDJiy

    Score
    1/10
    behavioral11

    • Target

      cmstp.exe

    • Size

      120KB

    • MD5

      24d9c7b8857e09f5bb526e4859c37910

    • SHA1

      3e03b51266d58451336c082ad74f452dc479802a

    • SHA256

      0de12af8dda5c9cfbb0f8c399108d34a84ac8b6ca62aa40745739be3ab6f3be4

    • SHA512

      4f12f2d2cc6216e437224b84cd5465334048168cfbc7d3eaf235e51ac1aeb60d2961ef4c879829adad86ba57a0b39c13eda2d7e7468fcb3bc3ef4c02c0932de8

    • SSDEEP

      3072:ftweCFU6pxiK5eTV51vxJ7TwOOS27BMCWEj1tSBS:1fCy6pogeTVLvx1TwO07BMJEj

    Score
    1/10
    behavioral12

    • Target

      cofire.exe

    • Size

      40KB

    • MD5

      cefb8cdb524fc6d4da2bba5df695d551

    • SHA1

      bb6558c57629bc0eddab412f982ad4cbecd64826

    • SHA256

      f940989914449c633272230a78c83fa587844971075734d6f10644aa5a354dcb

    • SHA512

      0c61ee12ebf6fcb1a4093857c8982de12223b390cde8c56dc64b18d88da4a91e53b9b1009905d56082cdea20d33c411f84a05cb1016977dde18a9d66e8b5b8d9

    • SSDEEP

      384:a7/5vJBArLKvG9zoM0qXCeTvhNMlCLA8qE/704RazygB2mAicMumWEJWf:a7gLKgVXCUvU8qswpB2mEMuM

    Score
    1/10
    behavioral13

    • Target

      colorcpl.exe

    • Size

      104KB

    • MD5

      367938448e0e07b183761a1c915ed88b

    • SHA1

      b81c222add4b507606f365bab8cf356af252b8f7

    • SHA256

      0144dcec75946e5b4e2d7b8ce4faea1e3f12b2663b80a72bf7691441819a629a

    • SHA512

      0585899a28ea9d2f903fb987cfed7624d4c6a56271a4fe5e5f6cba4302bc10d00e83f12b6b7a342ed408a233415033d0dbf89ae9549e928eed5888bbea6598fe

    • SSDEEP

      1536:6l7IPfSbS9vMBN7rQOJ7CFToTCzhcRguhwxTyPCb3lZpdym4dy7p:CkXlvq7jSP1cR2prbpdCY9

    Score
    1/10
    behavioral14

    • Target

      comp.exe

    • Size

      44KB

    • MD5

      ac09ce859407d3e28634fe861156d789

    • SHA1

      d492909cfa04b8367b830fb5769b0ed2780a8b27

    • SHA256

      afdec0bd08978adbfd01cbb403b8b1bc161f6021e92512887978284c276864a4

    • SHA512

      98bf72f1e1ef38463601e23cdec2b7c66d865d628acea63713573de4517737e6a2ab7731e6622467cd814b91a0e64b24783a285de5e6ea9307b8864782c5c408

    • SSDEEP

      384:oXYWZvemEJ5lem3RyqWbo1CmXacfWkjOwC+mzNDWMcWu:oIHJAm3Ry33vcf9jAzh

    Score
    1/10
    behavioral15

    • Target

      compact.exe

    • Size

      68KB

    • MD5

      4ca0d26479ebbd42c672a99c7203d6b2

    • SHA1

      f16df253e9876a9976161e7660bd519ed875fd09

    • SHA256

      c94ae23e37aa37ca8327efef1f7c2a07789c083aaf343afcd0bde77d9453b013

    • SHA512

      d38f68a52fdf6f323a02fdd42efc2d0e508247581d57d1b5a43baed7e2eafd3f02eed17173bcd1c71fe5612e5a2083b666c5d7f392c7ab3dfc8d7531d435c4c6

    • SSDEEP

      1536:je59/XyRd4fU9TpZhITJQcTlpHpXe3r11vJ:jer0ddp7MJQcTlpHpur/h

    Score
    1/10
    behavioral16

    • Target

      conhost.exe

    • Size

      1016KB

    • MD5

      9698384842da735d80d278a427a229ab

    • SHA1

      0027bb9f956056b469b1dfd7cebd23c53b8f6f79

    • SHA256

      f801e65f937827635eb462caf8cacbd473b9fc5ca428a9216a60c686f45802c1

    • SHA512

      7641437b354c8ec6ac2a272a8d9471eecc0c6f9115ebd42f154e9d079f8372885724884cc8930a5054a2d13d1f7df9274445c05236e8fd044fd28cfc9a824fc6

    • SSDEEP

      24576:u0RjIPm4iPgr2YiEVlhJA8PuK7ywmUxJa6PUk+APjKj5lcBNgm0NX:rR+ior2gC2uK7ywmUxJa6PUk+APjKX0k

    Score
    1/10
    behavioral17

    • Target

      consent.exe

    • Size

      221KB

    • MD5

      d7d5a4513ef1b450124231d8e77e3c49

    • SHA1

      62bdce4b9b6a93960e9bf873e3f6b3adc647cbbe

    • SHA256

      8b486a989699fd1492ab6eed681021f1ced6454c6346086fb2af0a5eb8f16fa7

    • SHA512

      590b747db6223e49865b7719d3fe6359fde7f1c79852e568c99fe7b2a98d3efb5d8b530e79ca9e5746674087dfdd6e280951bc89d5f2270d917ed2c7749dd6c6

    • SSDEEP

      6144:sdHkVbtxEn8DqEk98Jprm6wJwcLcWrKzb/:8HkVbtxsSqEXmK0S

    Score
    1/10
    behavioral18

    • Target

      control.exe

    • Size

      132KB

    • MD5

      79b6117b440b0b580156e9fb0a475108

    • SHA1

      544c902698bb7acf356fb8fc101dfeb433032dc1

    • SHA256

      2a1dfe6e7a7a3083e5aab487846a6f111f21a9f12104b84d363191aa09095064

    • SHA512

      f480eb8c1a328311fd2e24ea6aff5723f11b9be1017b5d84edb848c09ef5201c35ac7d873073da7bec2e036cc89c8de26ae7608b2f7052970d516e23768a9964

    • SSDEEP

      1536:fmQH/y76759US4Msae/qzSpZ3r1q6QkjfkQUk8+k6kawM1x8Dkf8dani25imK:vV9U1la7Sp5+1k12b/Af885RK

    Score
    3/10
    discovery
    behavioral19

    • Target

      convert.exe

    • Size

      40KB

    • MD5

      854c2e472961c99db9353dfe2016de49

    • SHA1

      95781ac5d65a01bb7857bad0f5bedb4a5321a3ae

    • SHA256

      63e2fe63c589db6343d9f731fc3ce86e1089b4d474a0cc2f473dfcf7aad76133

    • SHA512

      821334468a56fbe59e4bc4ae8cf1633433c40f7730fb1dd464bad2c9ca7d2ce535f8405368c0db72b67998e1684c542bf1f4c3711ee0cfb14045b9506b81e8ec

    • SSDEEP

      384:AEXVbgoaIo01ptg+KCll8tU/G+GeWPtlnWjwKQLNDWiqW:AkGo5tg+KCEC/DGH6aLz

    Score
    1/10
    behavioral20

    • Target

      convertvhd.exe

    • Size

      233KB

    • MD5

      40c2f5e9e94b5bafb65c2b3358b763fd

    • SHA1

      a72439e39c7522997f087a094616f169c02f8854

    • SHA256

      ec9b2fdc69580579ab5f502de8964eb6bf4f16c26e69b979a58c27f96be63301

    • SHA512

      a0516e4e2f3e492e210ea30a18bdecc37062b9d15cb7899a08e5bb42f3608031ed93dd110a4d04f531d293f0ff2b35466ec836d277b9885d42460172b81bb3a4

    • SSDEEP

      6144:iblS82pOesKPUNIYY2APfNTonczSYR/m7sY1:klS82puNdnczFZm7X1

    Score
    1/10
    behavioral21

    • Target

      coredpussvr.exe

    • Size

      76KB

    • MD5

      2a311b0b43d632800876c1644bc003f0

    • SHA1

      fab8642a9e941aeb5a7efa66fb40353c26ac76e1

    • SHA256

      f7679e96f5b9fa75d0ec012dd119992f402757e043cc8974efe85175be9c005f

    • SHA512

      745518a9546a5486d46f1cae0213bdff56c93b5a93a7aae7a5f5bc8bb9122f4153e070c4d2dc9d9e51dcdb18cb996619c63108bfc385e1d91d0db0dc236174eb

    • SSDEEP

      1536:DZujNpRZzUdjR+R2nuMeDMQZXUr7OaL0VuQomHq:NGNpiR+RDdZXUn70VuvmK

    Score
    1/10
    behavioral22

    • Target

      credwiz.exe

    • Size

      100KB

    • MD5

      6b3dcdb5b80e861f2043cedcc6fcdc19

    • SHA1

      c08b39897dccc80b8179df725ee5f62dbcc2580a

    • SHA256

      592e4c587227de2299dad0a295e7903c7138afdc107690c90c47dbfc77ccd08c

    • SHA512

      0bef40326b687bf28754913ab0661dac5c733658695395b4bebf0f6c04bf40f31fb4dc6ec610bdaa09282755393ce6183bc4eb2bc17ffc7d2021a6990aa6b7ed

    • SSDEEP

      1536:8iL2SokZNyPNXYjCh8nNFORFw48vFV5JQgU5yLApW:8SNyPVWFeYJmA0Y

    Score
    1/10
    behavioral23

    • Target

      cscript.exe

    • Size

      188KB

    • MD5

      fb5f642e7f598abdca427118f358b608

    • SHA1

      12e9085c07c9beee29bdbcdddab11ba9e98f2e75

    • SHA256

      32920f3aa2a01419fd8accb3947c413d76bf0d14f24eda914f15f53990df6ac2

    • SHA512

      947ea55a84f9b000b1d2119bc796b67f137736ebc2fad5980c52c2fb9a92feb0fa9e521610334bc4820a1ada7c48d828bf830f768378d9664f78c135cc77aeef

    • SSDEEP

      3072:NSLRGyFBEUEyI4cg+vaE9eonsWjQyXf/HgEBkMeuh/Wxi7HCSSSYeqRonvEjuCvq:NSLIy7EjvNvaE9eosWjQyXHHgEBkxuhZ

    Score
    1/10
    behavioral24

    • Target

      ctfmon.exe

    • Size

      28KB

    • MD5

      4d6add8b85f8e33937b8483bf5d040c1

    • SHA1

      69efb7fed6fe1f3edb557f839e806a72f1628368

    • SHA256

      7e067b7da5da60458b5f7d5a99bc7c7c1f41999cd2559985f09267b1ec2e56ec

    • SHA512

      43169be6234e1c6a03622a1ae544a456325f9e3f5035feab2e05ca64122dc68e7bbb74e94b3b56a8e5176b86e0ab0e1236c69ca38d7c1b26ae2fcb9471af75ef

    • SSDEEP

      192:/LQ+daAb5DcsPXflKTG5jCTpcEnYnbCsWxgW:/clAVc6X9+GZ2pcd/WxgW

    Score
    1/10
    behavioral25

    • Target

      cttune.exe

    • Size

      112KB

    • MD5

      f2b088ec7a15211928ff24e26a6ab029

    • SHA1

      68c589bc4e7dc2923a68b97bb6021e6e7ea6ca64

    • SHA256

      5ed3ef584ab77bdaf82c8f446b9aca61f9d39e815485fb0ebedeb098285790b2

    • SHA512

      4eacb6ef21e0d9b6715874f8e5137d22635243a85f0d03652fd10bb22a70b3d945fdfa847e9b6912779920bd7df21d227c7444b5cf3b97396d5905973f2e3364

    • SSDEEP

      1536://smTNfDsYE2JDSgRPVqh2xsLV6YPCBcOxkcEDhKABiNRxHhHR4s68zh+R66otjP:/nptR9qMU9ejuBiNRTJh97toyEE

    Score
    1/10
    behavioral26

    • Target

      cttunesvr.exe

    • Size

      64KB

    • MD5

      48b114993a72768d0267a0138a2a00dc

    • SHA1

      d862d2b759ba4bd46d4343597dbe5dd7b9fae970

    • SHA256

      bcbf641825ea305b819a4189d7680700ccd01b9622e52c1db7466caad47946e0

    • SHA512

      09075bf75886383947630a0c2d8739b279730077eb1591c73c2d40dfb40c7f07701b0ead13aba8db7e99b2b3d6207a026f61de7f56389fc82703df22baf8a32a

    • SSDEEP

      1536:Qzqd4XyX+SzyQmEhbEXLEziF9YJw3OD8z0:Qzqd4XyX+Szlm5XLpO1

    Score
    1/10
    behavioral27

    • Target

      curl.exe

    • Size

      656KB

    • MD5

      c3977d6c9e8653f46697513c3ca50602

    • SHA1

      0c7413848ee7e349d32f62dcb03c8327d0ddd12f

    • SHA256

      730a34ae4cf82e32f676f0bcd81a418967a641b6e9b88d2ec5d8e668ff4d7838

    • SHA512

      a6bdda08856cc43534157c466685407c95f7c98a3ebc06c2296edb9cc3b0b5786c9d1fe3b0bbf29f3128fc3c94ed192949e941e82be03c0614f033f6380df228

    • SSDEEP

      12288:zWGxtFZTeuri7uhoknAWwjjK/IwX+5bAIGIT09nj5:zKuKuOknhyO95IGI4nj5

    Score
    1/10
    behavioral28behavioral29

    • Target

      dasHost.exe

    • Size

      148KB

    • MD5

      2eed576dafb496ba5a9704450d69a2d6

    • SHA1

      f4f3e4a4195bacba6ae89297d099c3cf19f4de2f

    • SHA256

      b484f5bf3f327532bac4543f70689f58e27a86ce38083893c3adc94fe3c51850

    • SHA512

      c8ffb566025435775f9d86fcebd91736ced00ff3d2014744b305c4c9bb3935c0609542a3a5d0562c5884c28a96ce3b277724e5f8905892d5eecfc24727494441

    • SSDEEP

      3072:mHvcI9nEeT3SHkPnUHMGqecvvS6XhzYZ+6od6T0/k:RI9n13SHkPnUHRqvS6xU8d6T

    Score
    1/10
    behavioral30

    • Target

      dccw.exe

    • Size

      120KB

    • MD5

      b9f6784a6eb07daa6dfd654452dde43d

    • SHA1

      c0036f885eb07d02ff72c18e92ba299687753324

    • SHA256

      36d9a0ed11640a87cf75d8c14ad1a703ffa7d1d3ea9181a78ec2d23808470a5c

    • SHA512

      f91403072e1ec4d3f5d94b3e8a02e1102ea364428dfe6f0fae3db18019b663430d00d48f494bfe1bd826e885539a3ec8f99105d79922f5328475f43df37fee33

    • SSDEEP

      3072:nVksA9p1V1TkHwInpyePEcNu0VfuqR28X90R0Id:sp104knVuqzX2

    Score
    1/10
    behavioral31

    • Target

      dcomcnfg.exe

    • Size

      28KB

    • MD5

      dfa0d5bcde97e541aae197b791b0bf77

    • SHA1

      602883cd4308964a2e0fc74a561861908400144f

    • SHA256

      893a6c696459fe6f44c5e71dba1f792df37ba765095548d125ba43aca4f47b18

    • SHA512

      bf78cf1c20941f4735549c427a8295b7b2ea5756d1246b7530c0e1e55a9c1f28574d93a0de4faf2392df07940f2733208451130718150357efc390a09b75087c

    • SSDEEP

      192:XJTPYfus5uLG27WxL3uX8E4+7L5Eyf9CseWEFCpt2cjIfWJfsW0EW:ZTAWsYcL3fEP7LGj7FCp6fWyW0EW

    Score
    5/10

    • Drops file in System32 directory

    behavioral32

MITRE ATT&CK Enterprise v15

Tasks