f371c01e7e68b7bd05fb7f3f9c4dc76dc4107fad1f68c9a95157c52033a99533 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

main.exe

windows10-2004-x64

8

main.exe

windows11-21h2-x64

7

Sharing

General

Target

main.exe
Size

25.8MB
Sample

240908-t2qwwsydqb
MD5

4e956ac86ed8e55dbbe09f0a2c8006e5
SHA1

a9bb6e918e0405dcf92dc3d4e121c2c5eae7f00a
SHA256

f371c01e7e68b7bd05fb7f3f9c4dc76dc4107fad1f68c9a95157c52033a99533
SHA512

3368eadecc29c5f5835bb8059203469df43e6b3b59e5770f88e43bc905746a6e365b8c57afcdef4097bf2f03b44e381876f89e5e0e34923c5997f939a01381db
SSDEEP

786432:gZWBdpO3uVeBOGOO5EtcwySXy7KDNvyWK:gZWFOGztc+XyGpv

Score

8^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

main.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

15 signatures

1800 seconds

Behavioral task

behavioral2

Sample

main.exe

Resource

win11-20240802-en

windows11-21h2-x64

9 signatures

1800 seconds

Malware Config

Targets

- Target
  
  main.exe
- Size
  
  25.8MB
- MD5
  
  4e956ac86ed8e55dbbe09f0a2c8006e5
- SHA1
  
  a9bb6e918e0405dcf92dc3d4e121c2c5eae7f00a
- SHA256
  
  f371c01e7e68b7bd05fb7f3f9c4dc76dc4107fad1f68c9a95157c52033a99533
- SHA512
  
  3368eadecc29c5f5835bb8059203469df43e6b3b59e5770f88e43bc905746a6e365b8c57afcdef4097bf2f03b44e381876f89e5e0e34923c5997f939a01381db
- SSDEEP
  
  786432:gZWBdpO3uVeBOGOO5EtcwySXy7KDNvyWK:gZWFOGztc+XyGpv
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy