6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6ff142316a...f7.exe

windows7-x64

8

6ff142316a...f7.exe

windows10-2004-x64

8

Sharing

General

Target

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
Size

644KB
Sample

221106-ftzl6sdff5
MD5

21081c422b42907b32628ec887d39450
SHA1

715560155610087b25dcb4707a5b52256dbe5b74
SHA256

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
SHA512

1d058539d71ae33fc32f7fa164457632e6ce24099dd42007824669308b810c1e39fd7201686f516071c9101a8e186f363bd42e83d54a6ea2b3fdb7ce2a95e3f2
SSDEEP

12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
- Size
  
  644KB
- MD5
  
  21081c422b42907b32628ec887d39450
- SHA1
  
  715560155610087b25dcb4707a5b52256dbe5b74
- SHA256
  
  6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
- SHA512
  
  1d058539d71ae33fc32f7fa164457632e6ce24099dd42007824669308b810c1e39fd7201686f516071c9101a8e186f363bd42e83d54a6ea2b3fdb7ce2a95e3f2
- SSDEEP
  
  12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.