Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b
-
Size
288KB
-
Sample
221002-s2wayaecgq
-
MD5
7139a78e6c6e2319f0efcd9287bca0e9
-
SHA1
94e1f7ed58fdb42d7f44a01b65467a355083ad87
-
SHA256
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b
-
SHA512
9be3761c756043622ffe23373f9501b3b784fa28befccb71be309a115581278e8e204412add022efd4cbf5fe0a7a1d142ccb7fb23ea89b3c197766583982f4da
-
SSDEEP
6144:tMGubB2lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5m:tENTJabvhfm3XJ1tipsL5
Static task
static1
Behavioral task
behavioral1
Sample
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b
-
Size
288KB
-
MD5
7139a78e6c6e2319f0efcd9287bca0e9
-
SHA1
94e1f7ed58fdb42d7f44a01b65467a355083ad87
-
SHA256
f19ed2a23c55b0b92c5c2b5a2625d4e9fa7bdc159bb6aa87cc6af4da32c9584b
-
SHA512
9be3761c756043622ffe23373f9501b3b784fa28befccb71be309a115581278e8e204412add022efd4cbf5fe0a7a1d142ccb7fb23ea89b3c197766583982f4da
-
SSDEEP
6144:tMGubB2lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5m:tENTJabvhfm3XJ1tipsL5
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-