28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

28ad9ba4dc...a7.exe

windows7-x64

7

28ad9ba4dc...a7.exe

windows10-2004-x64

7

Sharing

General

Target

28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7
Size

628KB
Sample

250204-zpfs2s1rez
MD5

5d000f4f301a8f54eb7094fb124be244
SHA1

3fc8cbc303bb726b69005776fab8e0bc33130dff
SHA256

28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7
SHA512

59447bb6c78275b3dac16cd7f4d42faf8b539cb47fb4bdb9947a94a47ed876eb9290c03ea100133452b29ca906b1d18c84223319c2f48e132051ec57b3da23a8
SSDEEP

12288:Kh1Lk7xTnvjcjGmFnCp9vSLHuuzqU9xKIWHqXkE8p:uk7xTrcjGIDLHrzN9xjs6kH

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7.exe

Resource

win7-20240903-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7.exe

Resource

win10v2004-20250129-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7
- Size
  
  628KB
- MD5
  
  5d000f4f301a8f54eb7094fb124be244
- SHA1
  
  3fc8cbc303bb726b69005776fab8e0bc33130dff
- SHA256
  
  28ad9ba4dccbacbb55c3978bbc815be2753f3083473bd599d9d19412796e20a7
- SHA512
  
  59447bb6c78275b3dac16cd7f4d42faf8b539cb47fb4bdb9947a94a47ed876eb9290c03ea100133452b29ca906b1d18c84223319c2f48e132051ec57b3da23a8
- SSDEEP
  
  12288:Kh1Lk7xTnvjcjGmFnCp9vSLHuuzqU9xKIWHqXkE8p:uk7xTrcjGIDLHrzN9xjs6kH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy