04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

04dcf9abfd...e7.exe

windows7-x64

8

04dcf9abfd...e7.exe

windows10-2004-x64

8

Sharing

General

Target

04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7
Size

38KB
Sample

221201-hqh65ahd2w
MD5

5c562d1687f6c8bec635c79516dc46b0
SHA1

46c063902191f87129420fc59434e100b1618eb6
SHA256

04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7
SHA512

e143ee9cf05ba522f5220a363ed77664a8815f91a12d014f332d945553d9745ead51b854aaefd5f44bf31c8347b419feaba62195b2a7efc43d90392f14b06932
SSDEEP

768:zn3ZTZaMKHOcgfThJlKK0gob24ODM27dMxoD0l8r11c:zpkMKFgQK0gH4O4odRD0M1W

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7
- Size
  
  38KB
- MD5
  
  5c562d1687f6c8bec635c79516dc46b0
- SHA1
  
  46c063902191f87129420fc59434e100b1618eb6
- SHA256
  
  04dcf9abfda8ec71568796216036dedac02d3e98531a70e089b05e030af1fae7
- SHA512
  
  e143ee9cf05ba522f5220a363ed77664a8815f91a12d014f332d945553d9745ead51b854aaefd5f44bf31c8347b419feaba62195b2a7efc43d90392f14b06932
- SSDEEP
  
  768:zn3ZTZaMKHOcgfThJlKK0gob24ODM27dMxoD0l8r11c:zpkMKFgQK0gH4O4odRD0M1W
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy