306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

306be0c301...21.exe

windows7-x64

7

306be0c301...21.exe

windows10-2004-x64

7

Sharing

General

Target

306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21
Size

198KB
Sample

231011-f4v2qsdh98
MD5

b6d5d2be416d49e39c063d9a5764dd8a
SHA1

ab76ff11471a1babee9994feb5a520e483cbdd43
SHA256

306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21
SHA512

0198a6077d884f61a7ba4260b5d194f571501db1452f30d1fd357570f10856326454efbd16ae0f37d4060e00ef3439d9ea0926ec35d97290603e505f343bfdf1
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOA:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXt

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21.exe

Resource

win7-20230831-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21
- Size
  
  198KB
- MD5
  
  b6d5d2be416d49e39c063d9a5764dd8a
- SHA1
  
  ab76ff11471a1babee9994feb5a520e483cbdd43
- SHA256
  
  306be0c3019ea54c53df124f0817b65c440d8732f7c0ab7acf1ec06ee83b9f21
- SHA512
  
  0198a6077d884f61a7ba4260b5d194f571501db1452f30d1fd357570f10856326454efbd16ae0f37d4060e00ef3439d9ea0926ec35d97290603e505f343bfdf1
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOA:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy