Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

3

background...st.exe

windows10-2004-x64

1

bash.exe

windows10-2004-x64

1

bcdboot.exe

windows10-2004-x64

1

bcdedit.exe

windows10-2004-x64

1

bdeunlock.exe

windows10-2004-x64

1

bitsadmin.exe

windows10-2004-x64

1

bootim.exe

windows10-2004-x64

3

bootsect.exe

windows10-2004-x64

1

bridgeunattend.exe

windows10-2004-x64

1

browser_broker.exe

windows10-2004-x64

1

browserexport.exe

windows10-2004-x64

1

bthudtask.exe

windows10-2004-x64

1

cacls.exe

windows10-2004-x64

1

calc.exe

windows10-2004-x64

1

certreq.exe

windows10-2004-x64

3

certutil.exe

windows10-2004-x64

1

changepk.exe

windows10-2004-x64

1

csrss.sys

windows10-2004-x64

1

nbtstat.exe

windows10-2004-x64

1

ndadmin.exe

windows10-2004-x64

1

net.exe

windows10-2004-x64

1

net1.exe

windows10-2004-x64

1

netbtugc.exe

windows10-2004-x64

4

netcfg.exe

windows10-2004-x64

1

netiougc.exe

windows10-2004-x64

4

netsh.exe

windows10-2004-x64

3

newdev.exe

windows10-2004-x64

1

nltest.exe

windows10-2004-x64

1

nmbind.exe

windows10-2004-x64

1

nmscrub.exe

windows10-2004-x64

1

notepad.exe

windows10-2004-x64

1

nslookup.exe

windows10-2004-x64

1

Resubmissions

23/08/2024, 16:00

240823-tf47dsteqe 6

23/08/2024, 15:32

240823-sy293sseld 4

23/08/2024, 15:18

240823-sp1d5athqk 8

23/08/2024, 14:12

240823-rjcv7sydnd 7

23/08/2024, 02:33

240823-c17dta1cpd 7

23/08/2024, 02:11

240823-cmbpzszelg 4

23/08/2024, 02:00

240823-ce59mazbnh 4

23/08/2024, 01:37

240823-b1992a1dmm 5

23/08/2024, 01:24

240823-bsm5jazhpp 5

23/08/2024, 00:51

240823-a7p21awhld 6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Application Files - system32.zip

  • Size

    200.3MB

  • Sample

    240823-ce59mazbnh

  • MD5

    9e13c0126b7f608956f951212b77efdb

  • SHA1

    7c486a0f69ad4f21be45954df7bdc2f4ce9b0dad

  • SHA256

    b9af69ac821a649f211c99e3edf32a76a213e9450b5e972a6cdda5758af530dd

  • SHA512

    15b133823bf17179d3f806893480c77082d8a6442d885cfd5f1c77d8fdd476cafe63201fa030d60dbc812d9c9be8e8db71d83a714a4c40d8f59dbf28b9528ab5

  • SSDEEP

    6291456:nENHZIGVuWulErUOn39qvc00IYv6EbEJY7CqQubcGX:qZRulE54vcbv6tluQGX

Score
4/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      backgroundTaskHost.exe

    • Size

      41KB

    • MD5

      0130864049ea1deded8df354dafca2ae

    • SHA1

      e3ce7157dc3334a1d95f2aad137d9ca66160b71c

    • SHA256

      4c8915e07be1904a3bc02e4f8db0a80bb932ce610d97eabb9151b4e51f449980

    • SHA512

      6006ffc4ce93e59a6004f6207bc28ee9b64594e30161bfd91ead1ab3d86d1a1ec72890bd38f26a060144d2ece5583f950f9e22fe44a4b06e14f1fb3b4259b6f5

    • SSDEEP

      384:g4uJlxkv2cHwXDWKGWXDBRJA2LCFYj9R9zLm5:rScHwXhP1PBQYj/9zA

    Score
    1/10
    behavioral1

    • Target

      bash.exe

    • Size

      132KB

    • MD5

      eb5125a7992dbc1abf82391cd0a02671

    • SHA1

      9d28610e0827e9283a94fcff8dcec638f870849b

    • SHA256

      52d3874427ae0a4904bd65ab97af74155896b00ccb25f0f8362861f9a2065445

    • SHA512

      dff30d0bb0d992950886df660d55408cdc448b7dfda69881d9b36b7387fee2686f17fc09c8bee3f5037489a8af4dd366686746c9fec402095c7a6e5597abb31c

    • SSDEEP

      1536:nF7QQfz5VPSOhXRk+woV4io4CoHVpBxtee6i9EZ4U5FNCsyl1qcAuqVYlH08ep33:FFSOXVwoL093s40qqG3Rdj

    Score
    1/10
    behavioral2

    • Target

      bcdboot.exe

    • Size

      260KB

    • MD5

      fafe59ccb8834b0235988d9ca110bdd0

    • SHA1

      5a7e7ac0fe95a2d16734e1773ea40b0dbfe2e692

    • SHA256

      54f7fa09e805f9b1ddd36069a7169d9d1e58f4a2206e8c69eb072bb34c90c4ee

    • SHA512

      4cf4cb629e42e3f6abc545b03d3974994087cc23d8b7855c8130f5f05a8c478cf39592751482d1adf6d65573868b8c4388600d704a3582e2e30720b1fdf68d97

    • SSDEEP

      3072:vm0YrURvhjckbPeGQgsq+MWMdJgpDOm+Q6FeAkrR9TAU502mgCF5uzwlm:vSrS5jc+fs7MdyJOm+Q6FeAkcczw

    Score
    1/10
    behavioral3

    • Target

      bcdedit.exe

    • Size

      489KB

    • MD5

      c31a599474298ce0fb7f3e7d60e366b1

    • SHA1

      a052731b64dd3a9e716de123c1b9a5b5d052b556

    • SHA256

      f85a9d737989ff35f783e16777bd940cc976603a2f568a581bb6ab242c3c990c

    • SHA512

      0b62d7cff85dbe31e5ea539ea628b28d3fd04a470667e7d64c84704d36370bc9b1be475f50945dc3ddaa9cff5a4c6e2c1936e166cd644e3b3394b7fcf775e532

    • SSDEEP

      3072:NWWYJY7tkgStI7EcYXBRQcxVVNPeaQmlJaybSi3q4iZUKzKi0G7NjfjJU8q0SQ4c:NWWYJY7toIEBGwVP2aQW4jgqEQdfcc

    Score
    1/10
    behavioral4

    • Target

      bdeunlock.exe

    • Size

      312KB

    • MD5

      a4fccb35a09c90e7e0cd2a789aed9e2b

    • SHA1

      61e11e564fa6239ddd9529b35bd1087a20503dc1

    • SHA256

      f52e19ba4da44ab3ca36ffd388a8af158e15d48351f0dafd9edc5394f78c2fc0

    • SHA512

      85abd2f6cdd9cf567d154e8ca5bc18c6a28f5c46af9387b448d9bc815a22d121eee5673cdd9c54cd50b897c977a31cd8eb715ee8b320e5fa01ecdc4f99dfa5b7

    • SSDEEP

      6144:Rs+fwkS6CbJkDyVRXvaD5FaWQllgRbPD/pyul933EZGzkJT/NeB8wZ2Vs7nyatGJ:Rs+fwkJCbJgyVR/aD50WQllgRbr/4u94

    Score
    1/10
    behavioral5

    • Target

      bitsadmin.exe

    • Size

      232KB

    • MD5

      c62b04c717a3ccf25d0c44ba97c2a6aa

    • SHA1

      650e20291e029626e76551fb8e92da75fbb1eec5

    • SHA256

      7c2365b752f8d2708c737bc34260d5f3d1568fdd2e12892d3ca3e4952add0230

    • SHA512

      ae8c403cd2733e610c27aa77ed2e8281219f547dfa85f4e305d9cff4e98c20b7793b06dcdffcc60a6bf17b124e0b3301c86357daae862628de0feb4ba4208cfd

    • SSDEEP

      6144:wje00Ti+0VrfulK78oTK+JK0v/VysZ6UT:wq/W+0VrfulKYqj

    Score
    1/10
    behavioral6

    • Target

      bootim.exe

    • Size

      48KB

    • MD5

      7bc9fc5bd560b3a28f32372393f94c44

    • SHA1

      4d2ecf1eeefc5cd161dcd4a8160cb5b35bf932f9

    • SHA256

      b5390d893f01239dd03a331e882c570277a7d6d82c3ff7dc07391401160644e6

    • SHA512

      a344e5a876e060dd71f2899a6ce23e58d49ba9a5c0c4390e2a335eed8fe105ffdb07c48980b85e97624503889937d734e9c99db8e5606f24398b6ff7e34d04ee

    • SSDEEP

      768:B9sPpumPNYqamVO/hnGNeoMU12ETAAR2UrwG/i:Yp0b/hnSeosETd2UrwMi

    Score
    3/10
    discovery
    behavioral7

    • Target

      bootsect.exe

    • Size

      105KB

    • MD5

      68c39a577225aeb6b28ea3558e683c19

    • SHA1

      0504785549d7a3ac936c425b14253f779e580bc3

    • SHA256

      6a4e0396657ace212c955b4c95ddc357be66c2c9968dcd7a909bf4cc32f59841

    • SHA512

      fdb7398aff07be9630be5f8d6e8f415c22fc363fae9f6df816a72c6fbef7b93fe3def26a2f7dbe755a5035fb8efa912022eb80a514f8f04a0a9b25c90e8b557a

    • SSDEEP

      1536:0jzmAqtyFjEIPOhHK6iSlrKcBx5kIc3JGP1nXzMR:kqAqtyFjEkAqclrJdF6UdXgR

    Score
    1/10
    behavioral8

    • Target

      bridgeunattend.exe

    • Size

      44KB

    • MD5

      f714be94a3d41471bb501e17d16164c0

    • SHA1

      ebed2d6b7b09b588216a7b2b1686e2ad676debd8

    • SHA256

      c556ef4b6c68bb1ac550f5d0a4f01345b3935479e3ec5d7cbab6202b19fd862b

    • SHA512

      e1519d1701a61f019c16a97a657934969b923943b073f90ad2011c32778122426d4ec42b862cc7ff3d7911e63957ae7f1ea059886e31493638454c685bc6c4f0

    • SSDEEP

      384:teChSiai5jda2QgNwhJ/KX6Vd1On5l2RZypTnXfY/ki0zWsfWxs:xKWWywL/KXm1On5l0opTnQ/mz

    Score
    1/10
    behavioral9

    • Target

      browser_broker.exe

    • Size

      65KB

    • MD5

      a086c8f3e50316a6c8de68d5bb04e44d

    • SHA1

      719e3a8217d43ea44c0f53f583afe1a899205ac6

    • SHA256

      30e612e91d30055e66e7b6d1b1054e283ecbb229621ccaae304192f94c4226f6

    • SHA512

      b1418b667d2019dab3c4d070a85aa1f9996f49287596e665893e5c577ba94c60c21e3a99b2f40b1ae749caefc9e0df8a80cf276c5ae7cbd1344b8d9b7efb789a

    • SSDEEP

      1536:d+3jhnW3pG3AgqCXsRf0tgnNIgmQPtIGRwsLPvmVzQ:M3jx3uDJmYNIZqt9RwIkE

    Score
    1/10
    behavioral10

    • Target

      browserexport.exe

    • Size

      152KB

    • MD5

      3ba96dff77126450742ad98c9a4182f2

    • SHA1

      13858a746641602fc842a354b553f459055e5fad

    • SHA256

      72409ff79f3fc66ac6aab5dbc3979ee25f5af8d34860d03fe9ede7de76bdc7a2

    • SHA512

      22c6a203f92a27fe76139b90b4da044bea6c564f9f1f0364eca806e32e8047ab787e8dbab16d6152067638b90db6ee1327f7eece1b221b2504f4cbee06294e6d

    • SSDEEP

      3072:fl7v3zsq2rCFA9e+jMguOQ7r+PeaIsbNbPbMsaJ9ayl5FPF5:VgqtA9e+j/5Q7r+WobPbMsUb5FP

    Score
    1/10
    behavioral11

    • Target

      bthudtask.exe

    • Size

      64KB

    • MD5

      fb8820ecbd54852073128db33244d171

    • SHA1

      498bca20ffe2084acff7e0d09c9eed979b74459b

    • SHA256

      7441be48fa70ff34284db20b44780daec8ac9e1d706c397a2062c44deb36f36f

    • SHA512

      db5a31cfcf1fb279fdf7d991d3bdc2992079afe59fd00589fd2b28d30c525cf1b3defe38bf5cdf98efdbf4d47926f963bd828284786601e16711ae616a8ac3da

    • SSDEEP

      384:qCdtYiBaOpBmfxgNVN/g5UsWW8HWcKJajXDO1/EagS817l:nggBmfWVsUV9zDO

    Score
    1/10
    behavioral12

    • Target

      cacls.exe

    • Size

      56KB

    • MD5

      f4dc58c6a5ba5fc7b66a7884613106eb

    • SHA1

      213ebffc5a3d101a4aaf72d6145f5aee073b4d2a

    • SHA256

      d3063cd5fe97f722c832952f027aa558f827dc53d641be599d467405671fa8d2

    • SHA512

      a5ccb6dc4e004c0b8007139c76c7590b749b084055aaace5f445545e01af0b3ed983d31060f9c8db3c32422771a5460a07f2a904290cb2cff5740ad0696e77df

    • SSDEEP

      768:33R7B6GKat8oXdKzqbaJEQ56uUtKwJPGQkVJ:3B7S6ozeHQsfJPG3VJ

    Score
    1/10
    behavioral13

    • Target

      calc.exe

    • Size

      44KB

    • MD5

      2f82623f9523c0d167862cad0eff6806

    • SHA1

      5d77804b87735e66d7d1e263c31c4ef010f16153

    • SHA256

      9c2c8a8588fe6db09c09337e78437cb056cd557db1bcf5240112cbfb7b600efb

    • SHA512

      7fe8285e52355f2e53650dc4176f62299b8185ed7188850e0a566ddef7e77e1e88511bdcf6f478c938acef3d61d8b269e218970134e1ffc5581f8c7be750c330

    • SSDEEP

      384:OtF1XO9GxgL7ol+WSvYWCiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiLiiiiiriM:QOOgL7E4r

    Score
    1/10
    behavioral14

    • Target

      certreq.exe

    • Size

      480KB

    • MD5

      c665264e47391b4d763ecd3111b1052e

    • SHA1

      22f53b823f40a1115b303f91370d07b72b72a8c9

    • SHA256

      07480dc8cad237515bcea89f8566e58ea360b57b20ad025e8aea83ec24106ac1

    • SHA512

      6c05e253867ecaff27943a71e91a027ef59f5bd4aee397fd0fa87e37d5687d1188061eb1c3e4bd3d30945c1d233507646e9217aa0a1016d68398b07df2a93d20

    • SSDEEP

      12288:vPv/eIv7RbTIDZ7i3ci+lD8c7U8WiX6qacsuXXoPu79JpJNKKY6JGyAM:vPv/eIv7RbTIDZ7i3ci+L7UKX6qacsuP

    Score
    3/10
    behavioral15

    • Target

      certutil.exe

    • Size

      1.5MB

    • MD5

      533b29b92e2cb77d19688b00c03cf70f

    • SHA1

      6df13f008f7fdcae5f622875c8287c32038f46c8

    • SHA256

      01ecea2a1b2e28daa4af57df34993cc9b9901ef95de988108626fb6e69e070ac

    • SHA512

      f0586a0126c4023306624eec04b8b436731691004ccab9a1bdbdffda7f84b09634303c22bba60476227b4d0c0eb4bc4143ce5c849770ba2cf25be9f6822c483e

    • SSDEEP

      24576:FQVo/iVU1bR2HYfcvg6xm8bu0d96+maG4ZuM0L1O1LOqGxwZRlz9ZW80wtUWcz:uVoqVW2HAH8qy96+lb8O1LOqGARlz9Zi

    Score
    1/10
    behavioral16

    • Target

      changepk.exe

    • Size

      122KB

    • MD5

      17768be79e1cd332a13d0a94a6f476e0

    • SHA1

      b5326c3987519ef2a5e8aca31b845c6bbca5f992

    • SHA256

      ab0d5ed15194ec127628595786e38a43f22238a330c2a444fbf3dc4af4cc6bf3

    • SHA512

      ad1426c2928455bcd5d50b772b3951d46202a2a79073f7f967c8595ee87dd2c26d48e342ad91f339b3ab8ba486f9aa59b0b9b7f70973778888e5158fb9eb670f

    • SSDEEP

      1536:uHpRtJQtqw51JepgpZl7gYThvzj07j5UfFLPEPyjIzl:8pSt9LepCFgQNK5UfFLPEacR

    Score
    1/10
    behavioral17

    • Target

      csrss.exe

    • Size

      37KB

    • MD5

      696fb9d7e43f428634f31cf56361d7c3

    • SHA1

      9006ccac001d1352d004788ac1d134bd266a82d7

    • SHA256

      eac814cee400a078e2d549ba6e3d7bd09d1bc9805a1c6c9ec0610a0e558472a1

    • SHA512

      da9f91fccb0038b0a06a27f1a2e5481907727fab1c963b325d4d663e351f750640c52d4d19770b7cee151d0ee3bcefaf9dc64fe8fef4f355f81a96bb64315070

    • SSDEEP

      384:eXRMI/nW58nW2eG0mBDBRJiWq0Z1Z0R9zbPpk:2MohrTDB1Pi9sZ49zdk

    Score
    1/10
    behavioral18

    • Target

      nbtstat.exe

    • Size

      40KB

    • MD5

      c7596d3fad62996d752e03d2cc03d52a

    • SHA1

      5d293e75ddb51889ed9f2067ab54a054b61a3ba6

    • SHA256

      e2259ea3c5f2dbf3adffec684f81670b89bce3d595cc24b2ea2ec821f09e94cc

    • SHA512

      412e2d710786cbdc0c05078a89770ac1329db6ceb2c4d7fadf56be93d53745bea8b9a95db814371f28f81b78387bc750604e9ce597ed8fc8a0cd6eb3a22a2020

    • SSDEEP

      384:udJ8xDih6RRor0BLbIUD3fCP5RTgOqbypI3MGE+LKDWvrW:OJ8nnorELbIUDvCPPgOqepI3idw

    Score
    1/10
    behavioral19

    • Target

      ndadmin.exe

    • Size

      88KB

    • MD5

      f8936cf4abbf1c607dbe70b072ee6631

    • SHA1

      8249e150b32e36ab5cd9e4ff709a8a6336388f95

    • SHA256

      39db390a50cda4892560c503e7cd6b9492fed5e49f201be846b968c02665909a

    • SHA512

      5364513f71051df8c3383d9e944ddc1927d4421b11fd33e26dbc1dfeabf7479d1e8735924c5afc12517e6e41c2efb4b454e6dd949371b5828eccac8e81c414b6

    • SSDEEP

      768:vGbGc1zaxXBCXxTrjQAhtqIrn8+1hrpFIUUUUUUUUUUUUqRcxM:uboXIXFrjfFrGUUUUUUUUUUUU3+

    Score
    1/10
    behavioral20

    • Target

      net.exe

    • Size

      80KB

    • MD5

      bb1ae49b6b7c53499e94613761a6ac56

    • SHA1

      76866dde54ee3fa5bc8efefb9d44e6bf859973aa

    • SHA256

      afbe51517092256504f797f6a5abc02515a09d603e8c046ae31d7d7855568e91

    • SHA512

      03e832e859915c3f17eec4205863383f23532892f69519fe604c15fcc855804608adabd0dbbda158307d9c009f88482633b24cb35c4ea85b7022fb638f6fc018

    • SSDEEP

      1536:q++ViCmfVsRS+dFyRuyRaWqxkfDdR1dDNATmZF+:P+ViKnKfDD7DNATma

    Score
    1/10
    behavioral21

    • Target

      net1.exe

    • Size

      200KB

    • MD5

      7cbb1df40115c7d3cf0fe6ccff82708e

    • SHA1

      72294a3e95db575e23a1029dc4b6f63df25ad0dc

    • SHA256

      50e8ab76e511a917fd8ccf149ddac1447fd817ff703aa9fdcc51dc77ac0237be

    • SHA512

      7fec7794aa6996b729701f04477d67ec5ce6ff7f968598b091d2b790bd44c8001d1edee633b98c9e6974c1165d04a75effaf19ba7dc46a1fe2c974e7589715b4

    • SSDEEP

      6144:QJ0wqiwfN83c2j1QRViZn8pGOq+7ELW6K3fHq8s:QKwqiwfN83c2jWDiZn8pGOqqoKPHq

    Score
    1/10
    behavioral22

    • Target

      netbtugc.exe

    • Size

      44KB

    • MD5

      0f2924a72033a3a303685cee3b9ab8f4

    • SHA1

      41c14211bef85e0b5d1e8a0f475715207a0018d2

    • SHA256

      421b43689c02a7668e120358a034cdbe3bb14f6671f911bc998cec6483b0a41e

    • SHA512

      2581e48f6b762d1041fce702dea1f7ab64316a326eee4abcd370e1de938799b20d9364820f12474834d0681ee452e268c1ca64cca15a19f975a916488483af65

    • SSDEEP

      384:KRF4MD3wCzuJ6IPRyWvgzZnIPwjWosk4HamQNnTAvub5mAvW/OFW:KOCzO6cgN4xHTQhAvGXx

    Score
    4/10
    behavioral23

    • Target

      netcfg.exe

    • Size

      64KB

    • MD5

      65c5156e563c68dac287518c9fdd5acc

    • SHA1

      72506d6c735cc8c11ab50fbe7b20743044b2345b

    • SHA256

      0c93f74aa22ba299d89b00ad2b7e0f9c795e0969278909071b084b71b26f4a99

    • SHA512

      18fa9b59bf77d42b0c79da83e18987e30c4465fc4db5792ae7e7ec4a472598594021e1df995f87dab6872ec13e236b12e52ac20500101ae5d48d68f892f854e6

    • SSDEEP

      1536:vZHiP2YW179pZRXrb8l0zokuPtai+9GM7Aw2SN:vZpYA79p3rol0zzYb+kMkw2G

    Score
    1/10
    behavioral24

    • Target

      netiougc.exe

    • Size

      52KB

    • MD5

      a8299961e1c35d45363705219e58aef6

    • SHA1

      809f0f42a44184aecb66e25dc99487af6d9e7543

    • SHA256

      8cadcf5b0df1017fed04e4c2b75e54f737a2a9cf0bedd62378b712ce69eec001

    • SHA512

      dfd7d8a5c5ccb689a50f12689e980aeb7b672c456bbdcacf7b4a4dcaa8001592a0db29a75f3dbc5d27f2a61e83287dd35efd2d384814722a3b8b6991fdfdb902

    • SSDEEP

      768:bOUB5gMFFVXSNdmOyrNkcRpP/i9rI6xGjj/3Hxtr:FBB1S7mWc41gv/fr

    Score
    4/10
    behavioral25

    • Target

      netsh.exe

    • Size

      116KB

    • MD5

      52b4651083081201e243e97ed965b60a

    • SHA1

      92f2b4e5e5ca66486f4062ab27b8af23d6ad564a

    • SHA256

      3e91414a1a005937925e449627d4634e73b1da9dc12d1008b1baa54c77637c44

    • SHA512

      d8ebadcfdcd0ddedd27d50347473a274b22601ba17d683c6b20274ffdd0765fb15e4f9799bff4928e1e23f5f9af274e8a925df4975902ec5dd2ecfea694f6f43

    • SSDEEP

      1536:mpcHB7pj43bXYGgPRdIM5uTKWN7tX26bKmGaZ9:mpUzjyXYGofIiuT1N7tX2KB

    Score
    3/10
    persistenceprivilege_escalation
    behavioral26

    • Target

      newdev.exe

    • Size

      88KB

    • MD5

      83e0a872769219e77dc27dc49e646736

    • SHA1

      e74d2c22423de2a2dcea515b057e1142914ea1ab

    • SHA256

      6800f7a4315de6e021ed7ee6628ce0e7a298efb0287505aff91bdd9bee39b607

    • SHA512

      2df1f09a8f37882b9cefcc156d23a1b7d9f76aab034b81d947da32cd9b4ed42b3290fa5fe885b96d92038c2108f01084fee84221716cbcdeae67343b790ee85f

    • SSDEEP

      768:Irdm90fsOyVWrMa22CJQAhtqIrn8+1hrpFIUUUUUUUUUUUUqRcxM:QdIfOyWr322CJfFrGUUUUUUUUUUUU3+

    Score
    1/10
    behavioral27

    • Target

      nltest.exe

    • Size

      564KB

    • MD5

      8f5b02fa2f5b9c4f2760d754e6ab36c0

    • SHA1

      d5d4a7b48bcba8d5c88f466c35a1f95c49c1d6a4

    • SHA256

      7ab02e26e1710e93db6eac7cf1270ca30e068bbb21918c1a8ec64712c7b83e37

    • SHA512

      9b0745f3761223f367447961fc666d55b38695e10979180b604653360dd476fe4064ba23ce19a84a53c4737435bc8bbcc992880c32ec82c7018e72af475abda7

    • SSDEEP

      6144:8KM88nQ71z1xj4OvUodwgdsz1umVa9rz:lH8uh1xj446C1z

    Score
    1/10
    behavioral28

    • Target

      nmbind.exe

    • Size

      125KB

    • MD5

      6811dbdceaa9ce1383882108f6e4c1d0

    • SHA1

      c114eec0930ed699471ff725859d195342f484de

    • SHA256

      67d90370b310c32ffe6baa529f766ce5a6e5bc7cb8701e80c384ea991200cbe7

    • SHA512

      9bc5c41d4a0795f035962659652ecd11b4b8803243fb11fb05633e9923733a1f6ad8ad7a50f171db767101fcc9d65012bde5c1eb2a2e503b52931b5be43c1413

    • SSDEEP

      1536:0lpRJTAPEhXfo7kxiI2HvynZPaK75/htZm+P9A4W1UFALPbnRz3:0pHNXAI2H+9375dm0TYUF81z

    Score
    1/10
    behavioral29

    • Target

      nmscrub.exe

    • Size

      397KB

    • MD5

      6fd63029dac48e5fda759fcc2e17cc4c

    • SHA1

      f7e3433d4483154f5e5b9c9e0de9b918b54ecbdc

    • SHA256

      9517e2a9f58706d03c92793d21735a10ff08d27b5008ce027a74856c8bc729cc

    • SHA512

      90dc0569dc9f59eacaaecf3263f4293a25ca753051c7c63a12b517a1f162053b2b2e09e1f2ba1e5b2b1b69c5afa9ad66df40df841a6418c4f397be61e4e01d06

    • SSDEEP

      3072:Nplcgf2nohF6TSEqYn3KIS6fvAYVnrUH5FHcAkNKtxmJinleNK2rH3fk2BO5Q4dI:ND2nQ9YnaCvAY58xmCa7cpQ4+ZWFE

    Score
    1/10
    behavioral30

    • Target

      notepad.exe

    • Size

      352KB

    • MD5

      ff3e29fdfafa0e9030e2fcd71489d41d

    • SHA1

      d11d30ad4f2780ffee3626901bc50ccf5b20fc2d

    • SHA256

      ca29e8d8eca84f6f1b39e0bad771752cebf86d7754c20b69c77ab641a9ac2767

    • SHA512

      288d372144727125fcf5878534da5509c5a192e49c9da12cc6491d29ef3eb833394b9115d2da33a1b98fd776714df0296f21c7e64c6b05c2de3db6d060418815

    • SSDEEP

      6144:fn4F8DgewfvNtgmk2RJZtqJpiNecjqvLeYFu5CdUqiilipQ5gfzDVlVXgJ:fn4F8Dgewfltgmk2RP4Ls5CdUcAQ5GpX

    Score
    1/10
    behavioral31

    • Target

      nslookup.exe

    • Size

      100KB

    • MD5

      e1ad42845d19fc9cbfa7d6167d2ec709

    • SHA1

      3bd6d9a9c94e16a3b7278990531b5d7d33d111d7

    • SHA256

      ed7c553ef847d0e6b42969d56d84ecda77d4770131f70661fd430c34d2bccb94

    • SHA512

      9a71e5714497b0e83a659721e753c85cad178ac5677d9ecabe7e1c301b070619d16a43ae19d1ce4768c80a42ebd0ffba340e920b9f2f6a0ea25e11c631fa4461

    • SSDEEP

      1536:Qm+9V+qmsvwult/6pXm9lCW1gIy1Z4XIrb+XfjSxu:QVV+6P/60SfDoIyou

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

discovery
Score
3/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
3/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
4/10

behavioral24

Score
1/10

behavioral25

Score
4/10

behavioral26

persistenceprivilege_escalation
Score
3/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10