Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

269423d81c...41.exe

windows7-x64

10

269423d81c...41.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    269423d81cee4a83fb1410a3a0471403516e261c976ef9e65c44b2615d832241

  • Size

    216KB

  • Sample

    220919-ma2ezsgbhj

  • MD5

    75ca8de7130acc1fecb3cfa596239c13

  • SHA1

    88384fc65fbd540211b73277e273947e304b60cc

  • SHA256

    269423d81cee4a83fb1410a3a0471403516e261c976ef9e65c44b2615d832241

  • SHA512

    07e1281f92427eabcef97cd5dac6a40e1a2e3b72d583de8a0518add7016761a4aad10b3ba023256d3c24f49fd7a1c72fe5fa44b45efb67f4f1b9e856222fc6c1

  • SSDEEP

    3072:rYVaMKLuxxnM3/7eFE+S2/goM2IFNGzBkl9sJ+LK:cp/nM36q+VM2CWs9/K

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      269423d81cee4a83fb1410a3a0471403516e261c976ef9e65c44b2615d832241

    • Size

      216KB

    • MD5

      75ca8de7130acc1fecb3cfa596239c13

    • SHA1

      88384fc65fbd540211b73277e273947e304b60cc

    • SHA256

      269423d81cee4a83fb1410a3a0471403516e261c976ef9e65c44b2615d832241

    • SHA512

      07e1281f92427eabcef97cd5dac6a40e1a2e3b72d583de8a0518add7016761a4aad10b3ba023256d3c24f49fd7a1c72fe5fa44b45efb67f4f1b9e856222fc6c1

    • SSDEEP

      3072:rYVaMKLuxxnM3/7eFE+S2/goM2IFNGzBkl9sJ+LK:cp/nM36q+VM2CWs9/K

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.