12b26ee1cfae537ac38cd84b402e3453555a7c07e35e4a533ca5674701256ff8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

sample

windows10-1703-x64

8

Sharing

General

Target

sample
Size

27KB
Sample

230212-zz95msga3w
MD5

bbcfd73404a454c0c96282837603c896
SHA1

58e0f08a4204ac41b05320ba12555e7baa33b767
SHA256

12b26ee1cfae537ac38cd84b402e3453555a7c07e35e4a533ca5674701256ff8
SHA512

4ce89c355c12bf9102247cf8a19871d29ca4f71ab7aa53e49ce16e5be1d47b221d701ef015689afb3ce0bf478553f4315ca26a939f509aabf7e2d44a7c369620
SSDEEP

384:m8kuChz8iAlvolQbqF0Rt8IS+bBVZmP960cSHg11K:NkuCRIoQbqFgg60Y11K

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

sample

Resource

win10-20220812-en

windows10-1703-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  sample
- Size
  
  27KB
- MD5
  
  bbcfd73404a454c0c96282837603c896
- SHA1
  
  58e0f08a4204ac41b05320ba12555e7baa33b767
- SHA256
  
  12b26ee1cfae537ac38cd84b402e3453555a7c07e35e4a533ca5674701256ff8
- SHA512
  
  4ce89c355c12bf9102247cf8a19871d29ca4f71ab7aa53e49ce16e5be1d47b221d701ef015689afb3ce0bf478553f4315ca26a939f509aabf7e2d44a7c369620
- SSDEEP
  
  384:m8kuChz8iAlvolQbqF0Rt8IS+bBVZmP960cSHg11K:NkuCRIoQbqFgg60Y11K
Score

8^/10

discovery
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy