323d24da8aa4da3b38025eb86fc871b8b48779dfc5c22b590feef3680c7da007 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

91781f31eb...0N.exe

windows7-x64

7

91781f31eb...0N.exe

windows10-2004-x64

7

Sharing

General

Target

91781f31eb91b3e2dfb4be773b565f90N
Size

2.2MB
Sample

240826-jphpmsshlb
MD5

91781f31eb91b3e2dfb4be773b565f90
SHA1

8b7b44922b905ac32d228fed8d2581321a8ede87
SHA256

323d24da8aa4da3b38025eb86fc871b8b48779dfc5c22b590feef3680c7da007
SHA512

8b09580e44fad7d75f0591a3c5d8861328bb456808996d17dd526f2d3e1e76ff513fea9e40f0a803930118d0b1e436dfbc047b0ff824bf9118ca80a32d63b564
SSDEEP

49152:AcQbYD/jGLnJcN+9zWFULG+aLP6hN5aC67sv/nj0cN+9zWFULG+aLP6hX:AcQbYD/KLnqA9zyULG+aLP25ah7k/jp6

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

91781f31eb91b3e2dfb4be773b565f90N.exe

Resource

win7-20240708-en

windows7-x64

11 signatures

120 seconds

Behavioral task

behavioral2

Sample

91781f31eb91b3e2dfb4be773b565f90N.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  91781f31eb91b3e2dfb4be773b565f90N
- Size
  
  2.2MB
- MD5
  
  91781f31eb91b3e2dfb4be773b565f90
- SHA1
  
  8b7b44922b905ac32d228fed8d2581321a8ede87
- SHA256
  
  323d24da8aa4da3b38025eb86fc871b8b48779dfc5c22b590feef3680c7da007
- SHA512
  
  8b09580e44fad7d75f0591a3c5d8861328bb456808996d17dd526f2d3e1e76ff513fea9e40f0a803930118d0b1e436dfbc047b0ff824bf9118ca80a32d63b564
- SSDEEP
  
  49152:AcQbYD/jGLnJcN+9zWFULG+aLP6hN5aC67sv/nj0cN+9zWFULG+aLP6hX:AcQbYD/KLnqA9zyULG+aLP25ah7k/jp6
Score

7^/10

discovery upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy