4608fa265146451a0218681ce0d7b8d2223edd35b796f44566aa171cdd9c469b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

d6bcbba725...0N.exe

windows7-x64

d6bcbba725...0N.exe

windows10-2004-x64

Sharing

General

Target

d6bcbba725f9139dcc354e8485c09870N.exe
Size

85KB
Sample

240829-ampwhatgne
MD5

d6bcbba725f9139dcc354e8485c09870
SHA1

af3bdee7eaf49bbd320ed737fbfadc727d0277ff
SHA256

4608fa265146451a0218681ce0d7b8d2223edd35b796f44566aa171cdd9c469b
SHA512

1e41edede373904dfe229aadff388ad8e3c5e44d3f9769793e6632ffe2ab207f9a74a35f47b35b56f41ed2dddbcc68e5ae0255735ba4ee4e4d02dc25e856e0d7
SSDEEP

768:8qnum1opQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmq7:8vm1AeT7BVwxfvLFwjRq7

Score

10^/10

discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d6bcbba725f9139dcc354e8485c09870N.exe

Resource

win7-20240704-en

discovery evasion upx

windows7-x64

14 signatures

120 seconds

Behavioral task

behavioral2

Sample

d6bcbba725f9139dcc354e8485c09870N.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Targets

- Target
  
  d6bcbba725f9139dcc354e8485c09870N.exe
- Size
  
  85KB
- MD5
  
  d6bcbba725f9139dcc354e8485c09870
- SHA1
  
  af3bdee7eaf49bbd320ed737fbfadc727d0277ff
- SHA256
  
  4608fa265146451a0218681ce0d7b8d2223edd35b796f44566aa171cdd9c469b
- SHA512
  
  1e41edede373904dfe229aadff388ad8e3c5e44d3f9769793e6632ffe2ab207f9a74a35f47b35b56f41ed2dddbcc68e5ae0255735ba4ee4e4d02dc25e856e0d7
- SSDEEP
  
  768:8qnum1opQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmq7:8vm1AeT7BVwxfvLFwjRq7
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy