059c666ad1ca23d638a4e67f38c0aecb743fe830283fffe6fbdd6e147b37bac8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

1325616808...0N.exe

windows7-x64

8

1325616808...0N.exe

windows10-2004-x64

8

Sharing

General

Target

1325616808efbd6d8b95f40b3eb5eca0N
Size

38KB
Sample

240908-mp6cgstflh
MD5

1325616808efbd6d8b95f40b3eb5eca0
SHA1

be8ea41e71eeba1110657558c71a247e887c6475
SHA256

059c666ad1ca23d638a4e67f38c0aecb743fe830283fffe6fbdd6e147b37bac8
SHA512

0917207cb2ae44603f73745a70eb1873df4dc5df308aa45ac75dac148286f56dd020d02e9c188cc3f1d5cf6c6654867926d4e0a7fa417821a697f2bf9515a462
SSDEEP

768:Nzj1JegVa3Gry+uELEmITCs/NUZ6nZdYbCLECkrQoP9fmF2f1cOGu:NWQa2TLEmITcoQxfllfmS1cOt

Score

8^/10

discovery evasion execution upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1325616808efbd6d8b95f40b3eb5eca0N.exe

Resource

win7-20240903-en

discovery evasion execution upx

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

1325616808efbd6d8b95f40b3eb5eca0N.exe

Resource

win10v2004-20240802-en

discovery evasion execution upx

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Targets

- Target
  
  1325616808efbd6d8b95f40b3eb5eca0N
- Size
  
  38KB
- MD5
  
  1325616808efbd6d8b95f40b3eb5eca0
- SHA1
  
  be8ea41e71eeba1110657558c71a247e887c6475
- SHA256
  
  059c666ad1ca23d638a4e67f38c0aecb743fe830283fffe6fbdd6e147b37bac8
- SHA512
  
  0917207cb2ae44603f73745a70eb1873df4dc5df308aa45ac75dac148286f56dd020d02e9c188cc3f1d5cf6c6654867926d4e0a7fa417821a697f2bf9515a462
- SSDEEP
  
  768:Nzj1JegVa3Gry+uELEmITCs/NUZ6nZdYbCLECkrQoP9fmF2f1cOGu:NWQa2TLEmITcoQxfllfmS1cOt
Score

8^/10

discovery evasion execution upx
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

discoveryevasionexecutionupx

behavioral2

discoveryevasionexecutionupx

© 2018-2025

Terms | Privacy