2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2d16694929...c7.exe

windows7-x64

7

2d16694929...c7.exe

windows10-2004-x64

7

Sharing

General

Target

2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7
Size

253KB
Sample

240514-yrwfvadg5z
MD5

463a2e0261af91c6382b3544f4a83218
SHA1

39211c51d41cd5c1eda07b8e7ec240c58f855ea7
SHA256

2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7
SHA512

6d1720d22f0b13d347a863e974a52add88e7fedb9fe1fcd3a3f800b5108680fe61c8da05be846b0e15dcc3f821e145b23adc5bb13e6399c0e34a5d4047acbae1
SSDEEP

6144:72Ked8cbc1jEPTYZxZs0g+/9lUdDRN8KrAZkX:7Od8d1I7H0gYlUb2KrA0

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7.exe

Resource

win7-20240221-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7
- Size
  
  253KB
- MD5
  
  463a2e0261af91c6382b3544f4a83218
- SHA1
  
  39211c51d41cd5c1eda07b8e7ec240c58f855ea7
- SHA256
  
  2d16694929a453e2eb8b2bf1ed8b38d33088e8b1e53ab9b28fe03aa71c8879c7
- SHA512
  
  6d1720d22f0b13d347a863e974a52add88e7fedb9fe1fcd3a3f800b5108680fe61c8da05be846b0e15dcc3f821e145b23adc5bb13e6399c0e34a5d4047acbae1
- SSDEEP
  
  6144:72Ked8cbc1jEPTYZxZs0g+/9lUdDRN8KrAZkX:7Od8d1I7H0gYlUb2KrA0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy