66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

66b67479f7...d0.exe

windows7-x64

7

66b67479f7...d0.exe

windows10-2004-x64

7

Sharing

General

Target

66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0
Size

197KB
Sample

240319-q9wkkadf22
MD5

db48b76933051c9637b0836bdaf50ea3
SHA1

f87e36e71a08b34ed5f131bc37dd8fa2c4f96ef4
SHA256

66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0
SHA512

8f0f3b9d14c2ba27ea1c710d09a291bd03681888b5984aa8fc37fb37d42f46a343eb2ed69d6c9b55844fbd7da2ae8bd3e247327a534a1c57e30e806a05daba97
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOo:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXN

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0
- Size
  
  197KB
- MD5
  
  db48b76933051c9637b0836bdaf50ea3
- SHA1
  
  f87e36e71a08b34ed5f131bc37dd8fa2c4f96ef4
- SHA256
  
  66b67479f7516c50357ea9471771b8eeaac3c6087de921ff91e197bb90812cd0
- SHA512
  
  8f0f3b9d14c2ba27ea1c710d09a291bd03681888b5984aa8fc37fb37d42f46a343eb2ed69d6c9b55844fbd7da2ae8bd3e247327a534a1c57e30e806a05daba97
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOo:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXXN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy