ffbc0d5351cf3157a8bff2698fcfcff7f37240a5e00acdeb8b5bf513029d5c93 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

D79DEC1AAC5B.exe

windows11-21h2-x64

8

Sharing

General

Target

D79DEC1AAC5B.exe
Size

2.0MB
Sample

240904-zjhepawcjp
MD5

67ce648678fef049134294da0925c386
SHA1

a680f66bdfa61b4b1b971d49b50d2b28d272d4bf
SHA256

ffbc0d5351cf3157a8bff2698fcfcff7f37240a5e00acdeb8b5bf513029d5c93
SHA512

e696a6f6b20a76071cccfc6a3108530293b05619d46877abb06f6cb7fc68c04d7259c57abbe063a119ecc1d259fa991e0f9b3e088f19ec67fcc7e801f46917d8
SSDEEP

49152:TTTo20TjlliUWVh/QNCljh5X0BYDMlSznUk4Pq57e:joVjlrIhsClXkBiUSrKPye

Score

8^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

D79DEC1AAC5B.exe

Resource

win11-20240802-en

windows11-21h2-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  D79DEC1AAC5B.exe
- Size
  
  2.0MB
- MD5
  
  67ce648678fef049134294da0925c386
- SHA1
  
  a680f66bdfa61b4b1b971d49b50d2b28d272d4bf
- SHA256
  
  ffbc0d5351cf3157a8bff2698fcfcff7f37240a5e00acdeb8b5bf513029d5c93
- SHA512
  
  e696a6f6b20a76071cccfc6a3108530293b05619d46877abb06f6cb7fc68c04d7259c57abbe063a119ecc1d259fa991e0f9b3e088f19ec67fcc7e801f46917d8
- SSDEEP
  
  49152:TTTo20TjlliUWVh/QNCljh5X0BYDMlSznUk4Pq57e:joVjlrIhsClXkBiUSrKPye
Score

8^/10

discovery
- Downloads MZ/PE file
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy