c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

5

c27dde1345...20.exe

windows7-x64

8

c27dde1345...20.exe

windows10-2004-x64

8

Sharing

General

Target

c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20
Size

2.8MB
Sample

221123-y1bsssbe77
MD5

1bbbaf437a087e9ecc0c1b286348459c
SHA1

6ff9b1adc79728c02cefd16a95ad4892ba9fbbae
SHA256

c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20
SHA512

7dd95498903c6ea9e0bba76c44f7d43b7c31c532248490d0cb1e14f93b914c4dacba5a2bcf08bd60f71b4256be541d84b1d5a370b81519acad4b5e83af55b64e
SSDEEP

49152:3JZoQrbTFZY1iaN9a8knScY+rcqKW/IlKGlVG/x0cXJV2XQRa/r2gayJorzCK9MT:3trbTA1DknSUw7W/JfXfB0iFCy0/t+s

Score

8^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20
- Size
  
  2.8MB
- MD5
  
  1bbbaf437a087e9ecc0c1b286348459c
- SHA1
  
  6ff9b1adc79728c02cefd16a95ad4892ba9fbbae
- SHA256
  
  c27dde13457bc8e518f3b89ee93791f5af93c9cbbc48f40c4ace7d714a199b20
- SHA512
  
  7dd95498903c6ea9e0bba76c44f7d43b7c31c532248490d0cb1e14f93b914c4dacba5a2bcf08bd60f71b4256be541d84b1d5a370b81519acad4b5e83af55b64e
- SSDEEP
  
  49152:3JZoQrbTFZY1iaN9a8knScY+rcqKW/IlKGlVG/x0cXJV2XQRa/r2gayJorzCK9MT:3trbTA1DknSUw7W/JfXfB0iFCy0/t+s
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy