ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

5

ee38528be8...8N.exe

windows7-x64

ee38528be8...8N.exe

windows10-2004-x64

Sharing

General

Target

ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928N
Size

451KB
Sample

240929-1d47yavhrg
MD5

973bd668e8597a09e4fe594ddcabdd20
SHA1

364263cb781b88bcf3ebc406bdf27cb48ad25305
SHA256

ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928
SHA512

7b22d006c0b8e85cde02c623febb9173d35961ba6cdb95afacf43e65b83f530bfe5498cde58fb6177d05211a6534f2505f618d59e65adecabcab3c8bd5623fe8
SSDEEP

768:/pQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmRjmJE:BeT7BVwxfvLFwjRRv

Score

10^/10

discovery evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928N.exe

Resource

win7-20240729-en

discovery evasion upx

windows7-x64

14 signatures

120 seconds

Behavioral task

behavioral2

Sample

ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928N.exe

Resource

win10v2004-20240802-en

discovery evasion upx

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Targets

- Target
  
  ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928N
- Size
  
  451KB
- MD5
  
  973bd668e8597a09e4fe594ddcabdd20
- SHA1
  
  364263cb781b88bcf3ebc406bdf27cb48ad25305
- SHA256
  
  ee38528be894d9d2571cc67a6fabff5304a34c3569024469569fc0db394eb928
- SHA512
  
  7b22d006c0b8e85cde02c623febb9173d35961ba6cdb95afacf43e65b83f530bfe5498cde58fb6177d05211a6534f2505f618d59e65adecabcab3c8bd5623fe8
- SSDEEP
  
  768:/pQNwC3BESe4Vqth+0V5vKPyLylze70wi3BEmRjmJE:BeT7BVwxfvLFwjRRv
Score

10^/10

discovery evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionupx

behavioral2

discoveryevasionupx

© 2018-2025

Terms | Privacy