2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2bbb0824cc...78.exe

windows7-x64

7

2bbb0824cc...78.exe

windows10-2004-x64

7

Sharing

General

Target

2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978
Size

1.1MB
Sample

240909-say8hswfkf
MD5

6d8189af494c28ac1e2e6a8ac334ef54
SHA1

816b68e8b8d128a3a4a2e5dd7caf594b46c147dd
SHA256

2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978
SHA512

6ada67f00be6483e1f961af5ae7613fbd809768f9a3e9d355c9636d8b42b99650e9c19818b4641275e70c3b5c7bde1e74ca1eef44da051ce227b258fc1ff37e4
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q3:acallSllG4ZM7QzMA

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978.exe

Resource

win7-20240708-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978
- Size
  
  1.1MB
- MD5
  
  6d8189af494c28ac1e2e6a8ac334ef54
- SHA1
  
  816b68e8b8d128a3a4a2e5dd7caf594b46c147dd
- SHA256
  
  2bbb0824cc827b5f8123d2b019a2fc64cf5adea2e78f98e9e88f179231af3978
- SHA512
  
  6ada67f00be6483e1f961af5ae7613fbd809768f9a3e9d355c9636d8b42b99650e9c19818b4641275e70c3b5c7bde1e74ca1eef44da051ce227b258fc1ff37e4
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5Q3:acallSllG4ZM7QzMA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy