df07f5c894dc5b6ccc61c42603d97d2011d24fa33164d6c0e717e937cc70e86c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

FenixZone ...al.exe

windows7-x64

8

FenixZone ...al.exe

windows10-2004-x64

8

Sharing

General

Target

FenixZone Downloader Global.exe
Size

2.2MB
Sample

221230-abxf7shg6w
MD5

f4acc9bd9e1c3b1bcdde1420d72880ef
SHA1

280027cc243533d7c45abe3f4ac580075ff265af
SHA256

df07f5c894dc5b6ccc61c42603d97d2011d24fa33164d6c0e717e937cc70e86c
SHA512

88212d1c47d8a572d67765e6bd8e97ae9bc16a78fea47935e96f20743ae42c57e0a53be321c23f798d802cf61dd54c6f383d4fbf31f029fc01772689b230188e
SSDEEP

24576:sahCKYyreWEELzQeRV4eCKNLeTThbx9RwY62yB1IUYUBsjkbeAvmTKXqsL074byN:PvreNELzQdOQYu9ypweOQYu9ypFLzQ

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

FenixZone Downloader Global.exe

Resource

win7-20220901-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

FenixZone Downloader Global.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  FenixZone Downloader Global.exe
- Size
  
  2.2MB
- MD5
  
  f4acc9bd9e1c3b1bcdde1420d72880ef
- SHA1
  
  280027cc243533d7c45abe3f4ac580075ff265af
- SHA256
  
  df07f5c894dc5b6ccc61c42603d97d2011d24fa33164d6c0e717e937cc70e86c
- SHA512
  
  88212d1c47d8a572d67765e6bd8e97ae9bc16a78fea47935e96f20743ae42c57e0a53be321c23f798d802cf61dd54c6f383d4fbf31f029fc01772689b230188e
- SSDEEP
  
  24576:sahCKYyreWEELzQeRV4eCKNLeTThbx9RwY62yB1IUYUBsjkbeAvmTKXqsL074byN:PvreNELzQdOQYu9ypweOQYu9ypFLzQ
Score

8^/10

discovery
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.