24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

24b12babf0...90.exe

windows7-x64

8

24b12babf0...90.exe

windows10-2004-x64

8

Sharing

General

Target

24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090
Size

334KB
Sample

220919-t7wpbshac5
MD5

1539a3697cd4c1ba02b7cf3ac9b24e6e
SHA1

73185116f5b5d3e761ecddf1bfac5649eb1870b2
SHA256

24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090
SHA512

5efd6523061d2afe53ae993b267947d98656b37488e95608bfac59061486effdc7b69a50bed0244f2a7eb20fedc658cfb9ac7f703b70a1f0cc1b285eb895ed08
SSDEEP

6144:zME1nmg1tDbJ5621YNLhAAejrwzlm1Dh/k6uxeMIZP/m+DHx5t8R+oziCBV2DXN:wgnJehAAeElm1DtWxeM5SDsZoDXN

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090
- Size
  
  334KB
- MD5
  
  1539a3697cd4c1ba02b7cf3ac9b24e6e
- SHA1
  
  73185116f5b5d3e761ecddf1bfac5649eb1870b2
- SHA256
  
  24b12babf01e5b378dc678fe578de4d845e4cf8b2bdd60dfa38ac8772c565090
- SHA512
  
  5efd6523061d2afe53ae993b267947d98656b37488e95608bfac59061486effdc7b69a50bed0244f2a7eb20fedc658cfb9ac7f703b70a1f0cc1b285eb895ed08
- SSDEEP
  
  6144:zME1nmg1tDbJ5621YNLhAAejrwzlm1Dh/k6uxeMIZP/m+DHx5t8R+oziCBV2DXN:wgnJehAAeElm1DtWxeM5SDsZoDXN
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy