Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8beead19f19ceaa357d46eb78b65ad0b

  • Size

    132KB

  • Sample

    220920-ve5l7shebl

  • MD5

    8beead19f19ceaa357d46eb78b65ad0b

  • SHA1

    18dcea4f9e302d4e430b093d2cb516cb765f577d

  • SHA256

    5c4655b513f7c645a3549966aef30f94ec6ce60ea66f8047920a71a09eb3fab3

  • SHA512

    b498e621119f832aa7326731b803c7dabdac5e8b7f40c5ccc06042d87246e4c71399f6c64a8068fdd267b76d8e6a9c1d7d4ba024a2cf251b5510a24254e9d0b8

  • SSDEEP

    3072:81i/NU8bOMYcYYcmy5K/40g3nan3vx9kGSYng76s5YmMOMYcYY51i/NU87:qi/NjO5u//g+UGSYnum3Oai/Nj

Malware Config

Targets

    • Target

      8beead19f19ceaa357d46eb78b65ad0b

    • Size

      132KB

    • MD5

      8beead19f19ceaa357d46eb78b65ad0b

    • SHA1

      18dcea4f9e302d4e430b093d2cb516cb765f577d

    • SHA256

      5c4655b513f7c645a3549966aef30f94ec6ce60ea66f8047920a71a09eb3fab3

    • SHA512

      b498e621119f832aa7326731b803c7dabdac5e8b7f40c5ccc06042d87246e4c71399f6c64a8068fdd267b76d8e6a9c1d7d4ba024a2cf251b5510a24254e9d0b8

    • SSDEEP

      3072:81i/NU8bOMYcYYcmy5K/40g3nan3vx9kGSYng76s5YmMOMYcYY51i/NU87:qi/NjO5u//g+UGSYnum3Oai/Nj

    • joker

      Joker is an Android malware that targets billing and SMS fraud.

    • Executes dropped EXE

    • Modifies Installed Components in the registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks