Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d4c0c21a7e73174055c87494fb71d8db3bb86a5110b43d1c471a08dd25f353f

  • Size

    143KB

  • Sample

    221003-17av7ahgg9

  • MD5

    6d5e05f8bf1017ed591fd60ffbb1360e

  • SHA1

    ada2b46dc786b2fe41448b1e49e99eea14952ce3

  • SHA256

    4d4c0c21a7e73174055c87494fb71d8db3bb86a5110b43d1c471a08dd25f353f

  • SHA512

    9854f7a31316f9442a4058b6c510f351d9de0849eee4ecdb341e4556cfed036c992f74c21e97a0e7519bb22f8c3a4120a6f8b78aaf3081dbe4554e6545f7aee2

  • SSDEEP

    1536:bmi+xxdgF45E4h2Hnq8OFnouy8CBZJalRG7IwKiCRa44v8Ls5:bmi+/dgy5Ef8doutaZJaQqLR34G8

Score
8/10
upx

Malware Config

Targets

    • Target

      4d4c0c21a7e73174055c87494fb71d8db3bb86a5110b43d1c471a08dd25f353f

    • Size

      143KB

    • MD5

      6d5e05f8bf1017ed591fd60ffbb1360e

    • SHA1

      ada2b46dc786b2fe41448b1e49e99eea14952ce3

    • SHA256

      4d4c0c21a7e73174055c87494fb71d8db3bb86a5110b43d1c471a08dd25f353f

    • SHA512

      9854f7a31316f9442a4058b6c510f351d9de0849eee4ecdb341e4556cfed036c992f74c21e97a0e7519bb22f8c3a4120a6f8b78aaf3081dbe4554e6545f7aee2

    • SSDEEP

      1536:bmi+xxdgF45E4h2Hnq8OFnouy8CBZJalRG7IwKiCRa44v8Ls5:bmi+/dgy5Ef8doutaZJaQqLR34G8

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks