Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

55f8c0b561...69.exe

windows7-x64

8

55f8c0b561...69.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    55f8c0b56183c17c0230ea699a7d65d62d2875f8deda8c2f5defd677d9805d69

  • Size

    179KB

  • Sample

    220919-recdwafhgl

  • MD5

    4254a38cd7d8fcda7bf9908659da9800

  • SHA1

    131acfda848702a843cc2f8c41c9dc908c2137a3

  • SHA256

    55f8c0b56183c17c0230ea699a7d65d62d2875f8deda8c2f5defd677d9805d69

  • SHA512

    69bef79c0dffdd06ecd4b265579d18ff0991cc8002efb7cf173b74ef1bae1c2d59d7df955b99ee44e66333502249c316d48d355395eeb6fdb67d4c4f48d58f2d

  • SSDEEP

    3072:dBAp5XhKpN4eOyVTGfhEClj8jTk+0hEH3FnzbwM7jE:YbXE9OiTGfhEClq97H1YMs

Score
8/10

Malware Config

Targets

    • Target

      55f8c0b56183c17c0230ea699a7d65d62d2875f8deda8c2f5defd677d9805d69

    • Size

      179KB

    • MD5

      4254a38cd7d8fcda7bf9908659da9800

    • SHA1

      131acfda848702a843cc2f8c41c9dc908c2137a3

    • SHA256

      55f8c0b56183c17c0230ea699a7d65d62d2875f8deda8c2f5defd677d9805d69

    • SHA512

      69bef79c0dffdd06ecd4b265579d18ff0991cc8002efb7cf173b74ef1bae1c2d59d7df955b99ee44e66333502249c316d48d355395eeb6fdb67d4c4f48d58f2d

    • SSDEEP

      3072:dBAp5XhKpN4eOyVTGfhEClj8jTk+0hEH3FnzbwM7jE:YbXE9OiTGfhEClq97H1YMs

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks