49e355266ad51edcfd9c1e85b0e677e715edf7d11df393515d336da03c31a35d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-02-13...ia.exe

windows7-x64

7

2024-02-13...ia.exe

windows10-2004-x64

7

Sharing

General

Target

2024-02-13_42559bca2fd9692f0dc8396c45b23d3d_mafia
Size

467KB
Sample

240213-2dcncsae5w
MD5

42559bca2fd9692f0dc8396c45b23d3d
SHA1

99ede609f27cb1eb97550856f2d06f604b9d2509
SHA256

49e355266ad51edcfd9c1e85b0e677e715edf7d11df393515d336da03c31a35d
SHA512

bdaab6b62403abe5bc334b4393ee5cded5e6039e21db0c8819754e6fb08926aae1750ebc85e74d757546718397562ce61263741ccb2b8d397f75d1efcc30de1b
SSDEEP

6144:jFrJxvldL4c5ONK1xgWbd1s79+iSt+AZgPKapLpFDfaDAzCSitVcML7PFhvctpUU:Bb4bZudi79LmZgPXpvg0C9tOm7NIAk

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-02-13_42559bca2fd9692f0dc8396c45b23d3d_mafia.exe

Resource

win7-20231215-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-02-13_42559bca2fd9692f0dc8396c45b23d3d_mafia.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-02-13_42559bca2fd9692f0dc8396c45b23d3d_mafia
- Size
  
  467KB
- MD5
  
  42559bca2fd9692f0dc8396c45b23d3d
- SHA1
  
  99ede609f27cb1eb97550856f2d06f604b9d2509
- SHA256
  
  49e355266ad51edcfd9c1e85b0e677e715edf7d11df393515d336da03c31a35d
- SHA512
  
  bdaab6b62403abe5bc334b4393ee5cded5e6039e21db0c8819754e6fb08926aae1750ebc85e74d757546718397562ce61263741ccb2b8d397f75d1efcc30de1b
- SSDEEP
  
  6144:jFrJxvldL4c5ONK1xgWbd1s79+iSt+AZgPKapLpFDfaDAzCSitVcML7PFhvctpUU:Bb4bZudi79LmZgPXpvg0C9tOm7NIAk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy