0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

0c5c665752...68.exe

windows7-x64

0c5c665752...68.exe

windows10-2004-x64

Sharing

General

Target

0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168
Size

64KB
Sample

241004-xbl2sszdlm
MD5

3d287e4721b97003e49884285a5b97ba
SHA1

3045877db2466432ca99d3366e19f9f11aad11f6
SHA256

0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168
SHA512

37cfed4097893ce025c3ebeb75488dfb702a428833f11dc84403196b74012c54c5985e556e43f5019283e95442deefdc97af4631f6ebde65730f0dea24fa061a
SSDEEP

768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrj:KeTqavEjDWpuhj

Score

10^/10

discovery evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168
- Size
  
  64KB
- MD5
  
  3d287e4721b97003e49884285a5b97ba
- SHA1
  
  3045877db2466432ca99d3366e19f9f11aad11f6
- SHA256
  
  0c5c665752dbb3c6e21cd771eecc4d89a78960a0d6d9eb620caca2c338576168
- SHA512
  
  37cfed4097893ce025c3ebeb75488dfb702a428833f11dc84403196b74012c54c5985e556e43f5019283e95442deefdc97af4631f6ebde65730f0dea24fa061a
- SSDEEP
  
  768:qpQNwC3BET4QEfu0Ei8XxNDIN/3BEJwsrj:KeTqavEjDWpuhj
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Network Share Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy