Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8ea4bd84d73349eb2f750768d9b5e8cf8271f0aafad92a9be4319648fffae434

  • Size

    85KB

  • Sample

    221003-tanbpadeh9

  • MD5

    6d10da60bad5b5970eadc45c129aac60

  • SHA1

    2c050e96712dab6ddb2a260e6f9f3ce2d94a9001

  • SHA256

    8ea4bd84d73349eb2f750768d9b5e8cf8271f0aafad92a9be4319648fffae434

  • SHA512

    7cd8128441b4dea90c4482ff4e18938978b1f5ec0fd5eb78a6e7f760f5dc5b0524076071dfac425aca1799c4183da9287cf413ae33a53b5e9569d9f1372d966d

  • SSDEEP

    1536:XOImZsvlgpFZAvScr5RoAH25Y/CtwJGspcIoDOcVnQ3xvnouy8Y:+FZfi6CNH6zwgspgD0x/outY

Score
8/10

Malware Config

Targets

    • Target

      8ea4bd84d73349eb2f750768d9b5e8cf8271f0aafad92a9be4319648fffae434

    • Size

      85KB

    • MD5

      6d10da60bad5b5970eadc45c129aac60

    • SHA1

      2c050e96712dab6ddb2a260e6f9f3ce2d94a9001

    • SHA256

      8ea4bd84d73349eb2f750768d9b5e8cf8271f0aafad92a9be4319648fffae434

    • SHA512

      7cd8128441b4dea90c4482ff4e18938978b1f5ec0fd5eb78a6e7f760f5dc5b0524076071dfac425aca1799c4183da9287cf413ae33a53b5e9569d9f1372d966d

    • SSDEEP

      1536:XOImZsvlgpFZAvScr5RoAH25Y/CtwJGspcIoDOcVnQ3xvnouy8Y:+FZfi6CNH6zwgspgD0x/outY

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks