b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

b8e48a8531...17.exe

windows7-x64

7

b8e48a8531...17.exe

windows10-2004-x64

7

Sharing

General

Target

b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17
Size

196KB
Sample

240220-f8n4zsbh7v
MD5

3fb6ac2904cd31e1a3e57fe0d6db6cbe
SHA1

8f08f0de50b30d395e3ea7205f8744ddfcb34715
SHA256

b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17
SHA512

7171658197a1976cd601b5d337718e736285713cf1a773458446ed05817b18bc5c59af3beb68fc0c0384129a7b1970ee42f1b5e33270de63c04e8996a2104154
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCO1:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXg

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17.exe

Resource

win7-20231215-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17
- Size
  
  196KB
- MD5
  
  3fb6ac2904cd31e1a3e57fe0d6db6cbe
- SHA1
  
  8f08f0de50b30d395e3ea7205f8744ddfcb34715
- SHA256
  
  b8e48a8531a0de79f8902330ba65787579a6fb347ccb5dca879af6acae4a3e17
- SHA512
  
  7171658197a1976cd601b5d337718e736285713cf1a773458446ed05817b18bc5c59af3beb68fc0c0384129a7b1970ee42f1b5e33270de63c04e8996a2104154
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCO1:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy