3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

3b8c3fbe73...5b.exe

windows7-x64

8

3b8c3fbe73...5b.exe

windows10-2004-x64

8

Sharing

General

Target

3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b
Size

83KB
Sample

240909-zf6m4s1cnb
MD5

96c7ee873c0d3d98ce5e8710f81d01c5
SHA1

3c0f3ac31c87ef0a40cef7e413e1e4b7ee9219a1
SHA256

3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b
SHA512

16e32d923f86ba3b497c95c322b889ac4bf697a9eb6c8a627d38449fd5fa73a425555d841f32ffad1ddc77f2665dd42c9a3dba17a7a9cd60175647757dd324f9
SSDEEP

1536:q4Gh0o4g0p3nouy8QbunMxVS3HgdoKjhLJh731xvsr:q4Gh0o4g05outQCMUyNjhLJh731xvsr

Score

8^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b
- Size
  
  83KB
- MD5
  
  96c7ee873c0d3d98ce5e8710f81d01c5
- SHA1
  
  3c0f3ac31c87ef0a40cef7e413e1e4b7ee9219a1
- SHA256
  
  3b8c3fbe73466b0efded1677be24f5aa3c9dae4f27663597f2d86927276b575b
- SHA512
  
  16e32d923f86ba3b497c95c322b889ac4bf697a9eb6c8a627d38449fd5fa73a425555d841f32ffad1ddc77f2665dd42c9a3dba17a7a9cd60175647757dd324f9
- SSDEEP
  
  1536:q4Gh0o4g0p3nouy8QbunMxVS3HgdoKjhLJh731xvsr:q4Gh0o4g05outQCMUyNjhLJh731xvsr
Score

8^/10

discovery persistence upx
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2025

Terms | Privacy