b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

5

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

5

Sharing

General

Target

b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e
Size

1.1MB
Sample

240503-p2xl8afg41
MD5

4f6806e3625ed1d498a008922988d2ee
SHA1

f183965b4ab2910af08d3e68992d1895ec232d41
SHA256

b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e
SHA512

2d6b869c09f2078a7e49aaec77c2a4edfca710527235764f7d3e5dbc9ea14a9f0f0c4cdd9055a5f2d143fa28bd37a17b9872a8dcfe1b2721968b8872db0c46af
SSDEEP

24576:4qDEvCTbMWu7rQYlBQcBiT6rprG8auR2+b+HdiJUX:4TvC/MTQYxsWR7auR2+b+HoJU

Score

7^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e.exe

Resource

win11-20240419-en

windows11-21h2-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e
- Size
  
  1.1MB
- MD5
  
  4f6806e3625ed1d498a008922988d2ee
- SHA1
  
  f183965b4ab2910af08d3e68992d1895ec232d41
- SHA256
  
  b68bfbbc434ab88f50fe0fa3bccf1ea1b6bbc7a0da63410b384d99d22cc8d04e
- SHA512
  
  2d6b869c09f2078a7e49aaec77c2a4edfca710527235764f7d3e5dbc9ea14a9f0f0c4cdd9055a5f2d143fa28bd37a17b9872a8dcfe1b2721968b8872db0c46af
- SSDEEP
  
  24576:4qDEvCTbMWu7rQYlBQcBiT6rprG8auR2+b+HdiJUX:4TvC/MTQYxsWR7auR2+b+HoJU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy