1cef9532756d1c16cb6034c73feb63f9b18a269cccf4fcf07cf92eb9106eedfb | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

3632e05e07...cb.exe

windows7-x64

7

3632e05e07...cb.exe

windows10-2004-x64

7

Sharing

General

Target

3632e05e0742cd8f5d764ecaf243796aeb11ba5dfa858d4a2a2fae1d04734dcb.zip
Size

299KB
Sample

230311-ptqtpsbe2s
MD5

9ee4e47e50c566b07df0e1109aa9c51a
SHA1

4537111317bcd2623e86e52d3bc80c1c41969693
SHA256

1cef9532756d1c16cb6034c73feb63f9b18a269cccf4fcf07cf92eb9106eedfb
SHA512

74b2fb9bada5058e527c273f07b87a60ba87c9d08036aeb96a5af6700b2075a2e7c19934380b05b518638c3ac0528ae1911c6d2866864d8ade1aa451c38af416
SSDEEP

6144:+xzKCxBg/8WCg413T+INibBMiJPMnlbh5FokyQegi4:QeCMUbWbZClV5F6J4

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

3632e05e0742cd8f5d764ecaf243796aeb11ba5dfa858d4a2a2fae1d04734dcb.exe

Resource

win7-20230220-en

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

3632e05e0742cd8f5d764ecaf243796aeb11ba5dfa858d4a2a2fae1d04734dcb.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  3632e05e0742cd8f5d764ecaf243796aeb11ba5dfa858d4a2a2fae1d04734dcb.exe
- Size
  
  449KB
- MD5
  
  010510fa1699192fcf419d8d0979d326
- SHA1
  
  90e52323fbe695e19b12eb19abadd54140bc8bfa
- SHA256
  
  3632e05e0742cd8f5d764ecaf243796aeb11ba5dfa858d4a2a2fae1d04734dcb
- SHA512
  
  163f2ea50a79ece7d380d0d34224caab011ea7e6ee4900e184db602feb1f6119abc0478e5a2c5ab73ca8a02ac555f8103787dcad38050ec1b1e60d4acaa979e7
- SSDEEP
  
  6144:2Ya6r7pbu7cahyvQjwEPM9lKH9bZey354wS/yPulz75aWWvSZf:2YnQVhy7uMSdbZey3if/y2t9aLw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy