b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

b2e846ba51...de.exe

windows7-x64

8

b2e846ba51...de.exe

windows10-2004-x64

8

Sharing

General

Target

b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de
Size

36KB
Sample

221030-j6nbfsahc9
MD5

935978a1f4c525e9f359b7b0b7510460
SHA1

143d9f5e3b05b8f666f1b96d0c815af6cd093d37
SHA256

b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de
SHA512

d0e2f776a8a889ce663af43dd8b9ac841175fd978f90ccc04f92a3e40b5b97ab9f09f7a94d0282b56abfa544952f429b24115798e28c42c38a800dd4e3d9d2a1
SSDEEP

768:XjTSNXV2W7BOzUNPv0Brf29QGsQrmhDXu7Y:X3Sb5szUNPMoQGsQrmhl

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de
- Size
  
  36KB
- MD5
  
  935978a1f4c525e9f359b7b0b7510460
- SHA1
  
  143d9f5e3b05b8f666f1b96d0c815af6cd093d37
- SHA256
  
  b2e846ba51f653fb7a411adafe9af797fd765d1e23ff1e2f85f0884b83af74de
- SHA512
  
  d0e2f776a8a889ce663af43dd8b9ac841175fd978f90ccc04f92a3e40b5b97ab9f09f7a94d0282b56abfa544952f429b24115798e28c42c38a800dd4e3d9d2a1
- SSDEEP
  
  768:XjTSNXV2W7BOzUNPv0Brf29QGsQrmhDXu7Y:X3Sb5szUNPMoQGsQrmhl
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy