aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

aaec0141ae...fN.exe

windows7-x64

7

aaec0141ae...fN.exe

windows10-2004-x64

7

Sharing

General

Target

aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001fN
Size

61KB
Sample

241004-v5bf2s1end
MD5

dbb39cbcea841c501055acbfe7200160
SHA1

d46a0637c7f1981abed5da1ddee6700ef3718657
SHA256

aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001f
SHA512

e02e28e0ea09293beb9f2ae731b9c2109c052bd8030fd696ecb4b787eb245ef6a2d6fd6e5a6dfde7f8b69bff97d0ee31f6825bda7e0bd24482788fffbfa9399d
SSDEEP

1536:EvQoLHjw2iWPKMvw71sMLyXubeee5gzzzt:Ev5Ls27BIJsMLyXuD

Score

7^/10

defense_evasion discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001fN.exe

Resource

win7-20240704-en

defense_evasion discovery

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001fN.exe

Resource

win10v2004-20240910-en

defense_evasion discovery

windows10-2004-x64

9 signatures

120 seconds

Malware Config

Targets

- Target
  
  aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001fN
- Size
  
  61KB
- MD5
  
  dbb39cbcea841c501055acbfe7200160
- SHA1
  
  d46a0637c7f1981abed5da1ddee6700ef3718657
- SHA256
  
  aaec0141ae3ee8896d665c083bd0f77087b93d83261bc9edd4c7395459be001f
- SHA512
  
  e02e28e0ea09293beb9f2ae731b9c2109c052bd8030fd696ecb4b787eb245ef6a2d6fd6e5a6dfde7f8b69bff97d0ee31f6825bda7e0bd24482788fffbfa9399d
- SSDEEP
  
  1536:EvQoLHjw2iWPKMvw71sMLyXubeee5gzzzt:Ev5Ls27BIJsMLyXuD
Score

7^/10

defense_evasion discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery

© 2018-2025

Terms | Privacy