06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

06ddeb04e4...2d.exe

windows7-x64

7

06ddeb04e4...2d.exe

windows10-2004-x64

7

Sharing

General

Target

06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d
Size

196KB
Sample

240203-pqyp5shbc4
MD5

b6320aa4e369a22f4571a976171f627a
SHA1

ce8a65d712e6b49f57040ed308efcd914811995e
SHA256

06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d
SHA512

55319a87d3c279e4ba68aa988018582790e328d22feba567ba7a67223849e435df72d00b3064076814020727fc336d99cb5cd5d6fd947349ab35d8b88d82ba7f
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOP:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXK

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d.exe

Resource

win7-20231129-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d
- Size
  
  196KB
- MD5
  
  b6320aa4e369a22f4571a976171f627a
- SHA1
  
  ce8a65d712e6b49f57040ed308efcd914811995e
- SHA256
  
  06ddeb04e4fef4e2b29ea0b40ec321331bd386ace4168904f6f7a06af24f4c2d
- SHA512
  
  55319a87d3c279e4ba68aa988018582790e328d22feba567ba7a67223849e435df72d00b3064076814020727fc336d99cb5cd5d6fd947349ab35d8b88d82ba7f
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOP:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy