ee6411869e495253cbbfc96932f262dbe199277a319aad8654c30f54534da109 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

SecuriteIn...09.exe

windows7-x64

8

SecuriteIn...09.exe

windows10-2004-x64

8

Sharing

General

Target

SecuriteInfo.com.W32.Agent_AGen.ABZ.tr.30631.16009.exe
Size

435KB
Sample

240311-g2lkyseb4x
MD5

2ff5504c8b803e79dade34401c89701d
SHA1

87d626130cfcb4f3984a4b7ab74f956fe4f13b60
SHA256

ee6411869e495253cbbfc96932f262dbe199277a319aad8654c30f54534da109
SHA512

c2c11c0075efb5b2a72cb10ad17221482790b0081fdefb1512df8cddfe7f50aa13a22d9e654c4461109ff8c5063cb3f49e5f890afce2c2f0e46d5117895d74d2
SSDEEP

12288:TDr0C0xkXVXvNxeNOo2nLNsllllJsllllhi:TDr0C0xkXVXiNMnL4

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.W32.Agent_AGen.ABZ.tr.30631.16009.exe

Resource

win7-20240221-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.W32.Agent_AGen.ABZ.tr.30631.16009.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  SecuriteInfo.com.W32.Agent_AGen.ABZ.tr.30631.16009.exe
- Size
  
  435KB
- MD5
  
  2ff5504c8b803e79dade34401c89701d
- SHA1
  
  87d626130cfcb4f3984a4b7ab74f956fe4f13b60
- SHA256
  
  ee6411869e495253cbbfc96932f262dbe199277a319aad8654c30f54534da109
- SHA512
  
  c2c11c0075efb5b2a72cb10ad17221482790b0081fdefb1512df8cddfe7f50aa13a22d9e654c4461109ff8c5063cb3f49e5f890afce2c2f0e46d5117895d74d2
- SSDEEP
  
  12288:TDr0C0xkXVXvNxeNOo2nLNsllllJsllllhi:TDr0C0xkXVXiNMnL4
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy