Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9c2eae2760c0922e8ff7f06281c85edd3aca57e40ab16ec966c659c88e03a220

  • Size

    120KB

  • Sample

    221004-ehfjgsbebm

  • MD5

    172f47764230b16e2e31302320579a01

  • SHA1

    bfcc46cb9307197d74a48ce80e9752c959992ad2

  • SHA256

    9c2eae2760c0922e8ff7f06281c85edd3aca57e40ab16ec966c659c88e03a220

  • SHA512

    36c0bc02bd161a846e9a266965eba7d718d41762ca4e5f8258853724c86dbcf3d7aa948569ce09c8fc8a0d40645f377a670a2a36670d8b4ff34fa948740936fe

  • SSDEEP

    3072:kqLiM9qi9CUXBmnFEB8C2h43wT5ZjHwS:kQSsCEBCh07

Score
10/10

Malware Config

Targets

    • Target

      9c2eae2760c0922e8ff7f06281c85edd3aca57e40ab16ec966c659c88e03a220

    • Size

      120KB

    • MD5

      172f47764230b16e2e31302320579a01

    • SHA1

      bfcc46cb9307197d74a48ce80e9752c959992ad2

    • SHA256

      9c2eae2760c0922e8ff7f06281c85edd3aca57e40ab16ec966c659c88e03a220

    • SHA512

      36c0bc02bd161a846e9a266965eba7d718d41762ca4e5f8258853724c86dbcf3d7aa948569ce09c8fc8a0d40645f377a670a2a36670d8b4ff34fa948740936fe

    • SSDEEP

      3072:kqLiM9qi9CUXBmnFEB8C2h43wT5ZjHwS:kQSsCEBCh07

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks