Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab14ca54bcaf472af45462f5a826fce4aa3226529b48794fc52e3148677ab898

  • Size

    463KB

  • Sample

    221003-3p355acfb3

  • MD5

    069a5e2553ead6f554b1199b85352890

  • SHA1

    716e7dc313dc492083cb00b5765798da72a93016

  • SHA256

    ab14ca54bcaf472af45462f5a826fce4aa3226529b48794fc52e3148677ab898

  • SHA512

    7fd7e5f03e22788a679bb755147a2ac26e726d0cc60580ff3e6244bd2ef1fa565dd047b641adbefda1f022f1d837f407b8ffad1309ed85ffeb866ec0b354e84c

  • SSDEEP

    12288:2yVclvVDlr2TXnhVMp0qAW1w+yc3WaLGzgXE61JR7:1VclhdKXnhVMpkEyc3WaB06

Score
8/10

Malware Config

Targets

    • Target

      ab14ca54bcaf472af45462f5a826fce4aa3226529b48794fc52e3148677ab898

    • Size

      463KB

    • MD5

      069a5e2553ead6f554b1199b85352890

    • SHA1

      716e7dc313dc492083cb00b5765798da72a93016

    • SHA256

      ab14ca54bcaf472af45462f5a826fce4aa3226529b48794fc52e3148677ab898

    • SHA512

      7fd7e5f03e22788a679bb755147a2ac26e726d0cc60580ff3e6244bd2ef1fa565dd047b641adbefda1f022f1d837f407b8ffad1309ed85ffeb866ec0b354e84c

    • SSDEEP

      12288:2yVclvVDlr2TXnhVMp0qAW1w+yc3WaLGzgXE61JR7:1VclhdKXnhVMpkEyc3WaB06

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks