Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    10d9739a98aff94460c59fc66b3d8d296933e03e6d98aab537d3d69c05d50088

  • Size

    521KB

  • Sample

    220918-3r457sfdg6

  • MD5

    b59017e1b2c478b22c7079e2881ce4a4

  • SHA1

    5443180e24ed328182a435f95a919d2f4b8fcc24

  • SHA256

    10d9739a98aff94460c59fc66b3d8d296933e03e6d98aab537d3d69c05d50088

  • SHA512

    0e8333a43dfe346c4b5898dc9ae5b054b160b264e3fd8338cc010dd337549610ef9207d732d33177ca406420ecbae4b88bcf4dc47687721f6044516c59492559

  • SSDEEP

    12288:tKFbvjITRVN6B5SFuf2es2TX1EDFzzvhE+XSIVmPI2cL:tPRD+Uz5E/Yn7

Score
8/10
upx

Malware Config

Targets

    • Target

      10d9739a98aff94460c59fc66b3d8d296933e03e6d98aab537d3d69c05d50088

    • Size

      521KB

    • MD5

      b59017e1b2c478b22c7079e2881ce4a4

    • SHA1

      5443180e24ed328182a435f95a919d2f4b8fcc24

    • SHA256

      10d9739a98aff94460c59fc66b3d8d296933e03e6d98aab537d3d69c05d50088

    • SHA512

      0e8333a43dfe346c4b5898dc9ae5b054b160b264e3fd8338cc010dd337549610ef9207d732d33177ca406420ecbae4b88bcf4dc47687721f6044516c59492559

    • SSDEEP

      12288:tKFbvjITRVN6B5SFuf2es2TX1EDFzzvhE+XSIVmPI2cL:tPRD+Uz5E/Yn7

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks