4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

4d77d97402...0d.exe

windows7-x64

3

4d77d97402...0d.exe

windows10-2004-x64

7

Sharing

General

Target

4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d
Size

143KB
Sample

221127-q21vbafe41
MD5

d1302379f2222a6f65f1aa6fdb072ace
SHA1

59b35b0099d1dee00ebab458e737ee011e7276bf
SHA256

4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d
SHA512

2550d6eced93096f4ddd444dc59b60f2c873c57ab64cd21797fd03cecb1acb119048f6e7415a6be3ca65a940cc671b8e40053ee5396bbf609bb9911493599cb3
SSDEEP

3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45DEv:pe9IB83ID5y

Score

7^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d
- Size
  
  143KB
- MD5
  
  d1302379f2222a6f65f1aa6fdb072ace
- SHA1
  
  59b35b0099d1dee00ebab458e737ee011e7276bf
- SHA256
  
  4d77d974027014dc8e98e4fdd0ccf9fb1de1ada14c9a6d137584cfc61814450d
- SHA512
  
  2550d6eced93096f4ddd444dc59b60f2c873c57ab64cd21797fd03cecb1acb119048f6e7415a6be3ca65a940cc671b8e40053ee5396bbf609bb9911493599cb3
- SSDEEP
  
  3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45DEv:pe9IB83ID5y
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy