7c4283f5e620b2506bcb273f947def4435d95e143ae3067a783fd3adc873a659 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Bootstrapper.exe

windows7-x64

1

Bootstrapper.exe

windows11-21h2-x64

7

Resubmissions

03/09/2024, 15:35 UTC

240903-s1shnazgpk 7

03/09/2024, 15:33 UTC

240903-szgd1a1glf 7

Sharing

General

Target

Bootstrapper.exe
Size

796KB
Sample

240903-s1shnazgpk
MD5

4b94b989b0fe7bec6311153b309dfe81
SHA1

bb50a4bb8a66f0105c5b74f32cd114c672010b22
SHA256

7c4283f5e620b2506bcb273f947def4435d95e143ae3067a783fd3adc873a659
SHA512

fbbe60cf3e5d028d906e7d444b648f7dff8791c333834db8119e0a950532a75fda2e9bd5948f0b210904667923eb7b2c0176140babc497955d227e7d80fb109d
SSDEEP

12288:jHeLH6iTPSE54sgweI9oaQaj3T+piq+77xOZ+eMm:jHeLHdTSEeyoaQaj3apiq+77xd

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Bootstrapper.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Bootstrapper.exe

Resource

win11-20240802-en

windows11-21h2-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  Bootstrapper.exe
- Size
  
  796KB
- MD5
  
  4b94b989b0fe7bec6311153b309dfe81
- SHA1
  
  bb50a4bb8a66f0105c5b74f32cd114c672010b22
- SHA256
  
  7c4283f5e620b2506bcb273f947def4435d95e143ae3067a783fd3adc873a659
- SHA512
  
  fbbe60cf3e5d028d906e7d444b648f7dff8791c333834db8119e0a950532a75fda2e9bd5948f0b210904667923eb7b2c0176140babc497955d227e7d80fb109d
- SSDEEP
  
  12288:jHeLH6iTPSE54sgweI9oaQaj3T+piq+77xOZ+eMm:jHeLHdTSEeyoaQaj3apiq+77xd
Score

7^/10

discovery
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.