pysilon | 0514e1a3c9aaea98eda8e0aaa69a94a4c226a513400e4cf4648a16f1c542bb1e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

EXTRACTORZIP.exe

windows7-x64

7

EXTRACTORZIP.exe

windows10-2004-x64

7

Sharing

General

Target

EXTRACTORZIP.exe
Size

52.1MB
Sample

250326-fl7yksxxcs
MD5

41efdb5c1086678970b980742df7c96d
SHA1

d4f3d8646d80c6dd2031ebd1c35d28738ad531bb
SHA256

0514e1a3c9aaea98eda8e0aaa69a94a4c226a513400e4cf4648a16f1c542bb1e
SHA512

ac8201fc39ed0d91ac8f0be73a082b65011e3d099b5fc0c6d7a375b8299f069ae55ad8f9bf3fe99ea7667f7e49c07efbdb008c60b7e35580e058d8bcfb44bb02
SSDEEP

1572864:HAtIupuelynyAJDoZUlmPcnfJhETjWYlUOELhIODQMkm:vYDwnyAhiUUcnRheWlLLDV

Score

10^/10

pysilon pyinstaller upx

Static task

static1

pyinstaller pysilon

4 signatures

Behavioral task

behavioral1

Sample

EXTRACTORZIP.exe

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

EXTRACTORZIP.exe

Resource

win10v2004-20250314-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  EXTRACTORZIP.exe
- Size
  
  52.1MB
- MD5
  
  41efdb5c1086678970b980742df7c96d
- SHA1
  
  d4f3d8646d80c6dd2031ebd1c35d28738ad531bb
- SHA256
  
  0514e1a3c9aaea98eda8e0aaa69a94a4c226a513400e4cf4648a16f1c542bb1e
- SHA512
  
  ac8201fc39ed0d91ac8f0be73a082b65011e3d099b5fc0c6d7a375b8299f069ae55ad8f9bf3fe99ea7667f7e49c07efbdb008c60b7e35580e058d8bcfb44bb02
- SSDEEP
  
  1572864:HAtIupuelynyAJDoZUlmPcnfJhETjWYlUOELhIODQMkm:vYDwnyAhiUUcnRheWlLLDV
Score

7^/10

upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

pyinstallerpysilon

behavioral1

behavioral2

© 2018-2025

Terms | Privacy