c27436b227e3fe0c343cf27f9696865e74e07047ee54aa3bd1e7e32ad853d583 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

6f084bfc9e...af.exe

windows7-x64

8

6f084bfc9e...af.exe

windows10-2004-x64

4

Sharing

General

Target

6f084bfc9e26773a7d8f6c59b3650f7307a7b725fd2e9fddcba2199c28a349af.exe.zip
Size

932KB
Sample

231231-ccrcpaabdp
MD5

7bae67d924c6f4a82cd0bbeece791ecd
SHA1

28180c7a5f7f5dc30804b478d34142d39969e564
SHA256

c27436b227e3fe0c343cf27f9696865e74e07047ee54aa3bd1e7e32ad853d583
SHA512

6649ba089f7329618790696bbc488ba2a593daa5a57976c2b825f2812d936ae3571fe3fe086a2a53b345ed403012871a2dfb4cc9fe591c06b0f56791d86bc6c9
SSDEEP

24576:4E4C4EutJ7Q+y4sgEE0FfBRApP7I3RM4Fq4K+r6BMB:r0tJxy4sgiFfmERFkP+mBk

Score

8^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

6f084bfc9e26773a7d8f6c59b3650f7307a7b725fd2e9fddcba2199c28a349af.exe

Resource

win7-20231215-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

6f084bfc9e26773a7d8f6c59b3650f7307a7b725fd2e9fddcba2199c28a349af.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  6f084bfc9e26773a7d8f6c59b3650f7307a7b725fd2e9fddcba2199c28a349af.exe
- Size
  
  1.9MB
- MD5
  
  dd56ec4f23743414581e3e3b8bff5efa
- SHA1
  
  9852e771cc191380a02e65b3efa5ed2d0aa09c87
- SHA256
  
  6f084bfc9e26773a7d8f6c59b3650f7307a7b725fd2e9fddcba2199c28a349af
- SHA512
  
  6c8f9f519a30ccf98f64967bf8e3c922fcf54a2d1f584b501907c0353e3cd1391253472b39b344948e61c7185bd793a145c034d71ecdb09e2668ca85a355a0e0
- SSDEEP
  
  49152:MUOD1KJg/zjrYNjlCnhSYgZE8Xsh050F3Vsb5EX1QxoYiXYiOmPy:MUODawfYoYf
Score

8^/10

persistence
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy