a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

a3cdb9b6a9...74.exe

windows7-x64

9

a3cdb9b6a9...74.exe

windows10-2004-x64

9

Sharing

General

Target

a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574
Size

199KB
Sample

240422-bq6tvsde74
MD5

9a6476ceffc0c9a83d78985479043368
SHA1

19b058772015981a2920f604dc01fc16334c361a
SHA256

a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574
SHA512

42e446a759b8b1a9389c2afc9c32f821aa4c1c2baedb1d6668eacf464ffbe704d8cc76b45834ced86b099602691ad8b9c1eaa9593ed9f24f415707275c2020fc
SSDEEP

3072:cdEUfKj8BYbDiC1ZTK7sxtLUIGxD9Puf5QvfDU9q3XRrMBEGltj95y6hsYDm:cUSiZTK409D9A5s

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574.exe

Resource

win7-20240220-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574
- Size
  
  199KB
- MD5
  
  9a6476ceffc0c9a83d78985479043368
- SHA1
  
  19b058772015981a2920f604dc01fc16334c361a
- SHA256
  
  a3cdb9b6a90fa3c7aaa82295800dd2a475a1dfcce3ab144ba6e9b257f6a65574
- SHA512
  
  42e446a759b8b1a9389c2afc9c32f821aa4c1c2baedb1d6668eacf464ffbe704d8cc76b45834ced86b099602691ad8b9c1eaa9593ed9f24f415707275c2020fc
- SSDEEP
  
  3072:cdEUfKj8BYbDiC1ZTK7sxtLUIGxD9Puf5QvfDU9q3XRrMBEGltj95y6hsYDm:cUSiZTK409D9A5s
Score

9^/10
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy