780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

780a9047a9...cf.exe

windows7-x64

7

780a9047a9...cf.exe

windows10-2004-x64

7

Sharing

General

Target

780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf
Size

1.1MB
Sample

231124-m49nfsba2x
MD5

b6ca5dafc531328acba9fa07f78c64ce
SHA1

5e814e6e933a8364887961a568140380f841d3f0
SHA256

780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf
SHA512

ca6a8d7cb67bf507b3f1c3ef2e2d6a0f88d4b25ae30642974f91697863d14a47d28cb5d3b58df33bf9c76445e61b9a032435362df9da1c5d90c33c724a26d0ce
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyR4:g5ApamAUAQ/lG4lBmFAvZ4

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf.exe

Resource

win7-20231020-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf.exe

Resource

win10v2004-20231025-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf
- Size
  
  1.1MB
- MD5
  
  b6ca5dafc531328acba9fa07f78c64ce
- SHA1
  
  5e814e6e933a8364887961a568140380f841d3f0
- SHA256
  
  780a9047a9cbcae7894d50a18b223af1a152984c62ee9b156d3cbff1d0481ccf
- SHA512
  
  ca6a8d7cb67bf507b3f1c3ef2e2d6a0f88d4b25ae30642974f91697863d14a47d28cb5d3b58df33bf9c76445e61b9a032435362df9da1c5d90c33c724a26d0ce
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyR4:g5ApamAUAQ/lG4lBmFAvZ4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy