Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

54cbc8e685...e0.exe

windows7-x64

8

54cbc8e685...e0.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    54cbc8e6854f25c1e7fa190b8d4458e79a95f44cbb862b626ddeae7949c27be0

  • Size

    180KB

  • Sample

    221004-h8m8sshcc2

  • MD5

    472a3300b7fb4060cbad0fcba5d99460

  • SHA1

    1f433a46b4e26879e6aff56446b9ad08c678af02

  • SHA256

    54cbc8e6854f25c1e7fa190b8d4458e79a95f44cbb862b626ddeae7949c27be0

  • SHA512

    a28cb6b378681453cc766539998ac062e1344f8d0cff7bc8e61ed0efef164bde8c541ab273b63727afe31efdfcfdffc7c936ad7942fc5d8a983fc32bbc5982f1

  • SSDEEP

    3072:fBAp5XhKpN4eOyVTGfhEClj8jTk+0hD+V64pfPFtlY:ibXE9OiTGfhEClq9VzfPFPY

Score
8/10

Malware Config

Targets

    • Target

      54cbc8e6854f25c1e7fa190b8d4458e79a95f44cbb862b626ddeae7949c27be0

    • Size

      180KB

    • MD5

      472a3300b7fb4060cbad0fcba5d99460

    • SHA1

      1f433a46b4e26879e6aff56446b9ad08c678af02

    • SHA256

      54cbc8e6854f25c1e7fa190b8d4458e79a95f44cbb862b626ddeae7949c27be0

    • SHA512

      a28cb6b378681453cc766539998ac062e1344f8d0cff7bc8e61ed0efef164bde8c541ab273b63727afe31efdfcfdffc7c936ad7942fc5d8a983fc32bbc5982f1

    • SSDEEP

      3072:fBAp5XhKpN4eOyVTGfhEClj8jTk+0hD+V64pfPFtlY:ibXE9OiTGfhEClq9VzfPFPY

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks