Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    072087ec3b8be885fd82335ca0f6a831003679763eb3fd472fab01deb510f0af

  • Size

    2.5MB

  • Sample

    220915-qzy8psghhj

  • MD5

    0894078d06d457b29171deb42134621e

  • SHA1

    b97d0073e813929c8d8d545231e63fa347b4f73b

  • SHA256

    072087ec3b8be885fd82335ca0f6a831003679763eb3fd472fab01deb510f0af

  • SHA512

    e69bcb22530c5d091c9b3da03ace62cca664cf6969fc1fc1a1951ff5ede7811fa9778f9c83f5afe7843c703059b742f1b0c2e126f31201dbc4dd30462bb22d8b

  • SSDEEP

    49152:uo+NvMAiTRoQ8Hx6Xk6niMZxA/bKn32ZJuuG0O0wnXx7O7lrf29RVexbPIr3fD:uRpA8x6UpMZcbyM1G0wXxslq9RVUbgrb

Malware Config

Targets

    • Target

      072087ec3b8be885fd82335ca0f6a831003679763eb3fd472fab01deb510f0af

    • Size

      2.5MB

    • MD5

      0894078d06d457b29171deb42134621e

    • SHA1

      b97d0073e813929c8d8d545231e63fa347b4f73b

    • SHA256

      072087ec3b8be885fd82335ca0f6a831003679763eb3fd472fab01deb510f0af

    • SHA512

      e69bcb22530c5d091c9b3da03ace62cca664cf6969fc1fc1a1951ff5ede7811fa9778f9c83f5afe7843c703059b742f1b0c2e126f31201dbc4dd30462bb22d8b

    • SSDEEP

      49152:uo+NvMAiTRoQ8Hx6Xk6niMZxA/bKn32ZJuuG0O0wnXx7O7lrf29RVexbPIr3fD:uRpA8x6UpMZcbyM1G0wXxslq9RVUbgrb

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v6

Tasks