388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5

388fce9727...84.exe

windows7-x64

388fce9727...84.exe

windows10-2004-x64

Sharing

General

Target

388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84
Size

282KB
Sample

240927-zarl1ayall
MD5

bd25970f08882a522615ba4df1d0a2d9
SHA1

fd7996b7e308af2b8f9306e459655aeab23def41
SHA256

388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84
SHA512

97151544c6caa3dcd0d652730bbde3e1d0481663f78b473d10d91db5b354ef7ab6fb895d51d1a78cb7210910dfd64083d6bc1fbd89c7a2898d1e47455fa7506e
SSDEEP

6144:SmVnxWa3L3PjqEPZlWDSmeM3YC/2AnvGsB4Cy6NNFJW9KYuLOush+X5RhgM:nf3L3PBes1CuAnvBmz6nXW9KYuLrsh+/

Score

10^/10

discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84.exe

Resource

win7-20240903-en

discovery evasion upx

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84
- Size
  
  282KB
- MD5
  
  bd25970f08882a522615ba4df1d0a2d9
- SHA1
  
  fd7996b7e308af2b8f9306e459655aeab23def41
- SHA256
  
  388fce97277c4f4b670e18d89adbffb49fbdfaccbe22a11d257f147a92a83e84
- SHA512
  
  97151544c6caa3dcd0d652730bbde3e1d0481663f78b473d10d91db5b354ef7ab6fb895d51d1a78cb7210910dfd64083d6bc1fbd89c7a2898d1e47455fa7506e
- SSDEEP
  
  6144:SmVnxWa3L3PjqEPZlWDSmeM3YC/2AnvGsB4Cy6NNFJW9KYuLOush+X5RhgM:nf3L3PBes1CuAnvBmz6nXW9KYuLrsh+/
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

System Time Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy