2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2ec7cb891a...93.exe

windows7-x64

7

2ec7cb891a...93.exe

windows10-2004-x64

7

Sharing

General

Target

2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193
Size

199KB
Sample

231012-wjy6nafd7s
MD5

60589adec8738cc714cf8a6fb2917152
SHA1

20bd11d82c6ad9862e3f3240741f842123617209
SHA256

2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193
SHA512

5e9a8c06be800ee964e4a8cc0a844ee857b2029e2cb39566c397b72e27f0e8f3f95d403f57584213f25c05c9da8de9ce00e9186f907e7065752cedd76a1a4750
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOl:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX0

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193.exe

Resource

win7-20230831-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193
- Size
  
  199KB
- MD5
  
  60589adec8738cc714cf8a6fb2917152
- SHA1
  
  20bd11d82c6ad9862e3f3240741f842123617209
- SHA256
  
  2ec7cb891a4d2ad85fbf43e19298f7103c427e7244a4909b72d8c7ff65ac3193
- SHA512
  
  5e9a8c06be800ee964e4a8cc0a844ee857b2029e2cb39566c397b72e27f0e8f3f95d403f57584213f25c05c9da8de9ce00e9186f907e7065752cedd76a1a4750
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOl:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy