ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

ced12ac2a4...61.exe

windows7-x64

7

ced12ac2a4...61.exe

windows10-2004-x64

7

Sharing

General

Target

ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61
Size

838KB
Sample

240908-wnpg1ssare
MD5

17796727ae44c47b54acedac4234fa32
SHA1

171e3afcd1dd68c562fddedbb30e76d9a6b47f6a
SHA256

ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61
SHA512

f9ba2d2e2e566061b13d959b719d4b3e66b9dbab552bca8518a6f612f8436d506397f50a2fff92117a4442cef10a2e466600c07b092d2b0eddaa85c971c65b31
SSDEEP

12288:KiRi4f4iCnhfnDoCiO/PXyqwF2LYTf/bWdBmrxwfDj7r9a3JI8PRoSW50Tn:KiRL4//6xcLYT3bWdBmVkDj7rL8Pb

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61
- Size
  
  838KB
- MD5
  
  17796727ae44c47b54acedac4234fa32
- SHA1
  
  171e3afcd1dd68c562fddedbb30e76d9a6b47f6a
- SHA256
  
  ced12ac2a44bad4804911b5c333d742057f0e6cdb67f11894f9802e7444d4c61
- SHA512
  
  f9ba2d2e2e566061b13d959b719d4b3e66b9dbab552bca8518a6f612f8436d506397f50a2fff92117a4442cef10a2e466600c07b092d2b0eddaa85c971c65b31
- SSDEEP
  
  12288:KiRi4f4iCnhfnDoCiO/PXyqwF2LYTf/bWdBmrxwfDj7r9a3JI8PRoSW50Tn:KiRL4//6xcLYT3bWdBmVkDj7rL8Pb
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy