Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi

  • Size

    1.6MB

  • Sample

    221005-q7h7fsegar

  • MD5

    555ba9ad7a9978eeb4bdefa180cef487

  • SHA1

    86951455adb15ed78537172dbf4b18bd271e32e7

  • SHA256

    3b25269ee1bf950e149d758ce4074f0ddca17282fb933bc44f9a77e6d495dc1b

  • SHA512

    210894f614c2c1c022254ca52656a7fdb4a5617d58200e8ee07b159500aef1b06af1580b5d321c71cf48f48c06363feda05fb4b4f9cdb325643e819f2a37448f

  • SSDEEP

    49152:4wvNitjVqoA5AhxDOjSETeVfb/6LYgqHDDWs:UtMJAvOjSEPYgqHfN

Score
8/10

Malware Config

Targets

    • Target

      Reporte_Estado_De_Pago_Documento-Planilla-relacion_presupuestaria-7625c75b740023c1ba1586.msi

    • Size

      1.6MB

    • MD5

      555ba9ad7a9978eeb4bdefa180cef487

    • SHA1

      86951455adb15ed78537172dbf4b18bd271e32e7

    • SHA256

      3b25269ee1bf950e149d758ce4074f0ddca17282fb933bc44f9a77e6d495dc1b

    • SHA512

      210894f614c2c1c022254ca52656a7fdb4a5617d58200e8ee07b159500aef1b06af1580b5d321c71cf48f48c06363feda05fb4b4f9cdb325643e819f2a37448f

    • SSDEEP

      49152:4wvNitjVqoA5AhxDOjSETeVfb/6LYgqHDDWs:UtMJAvOjSEPYgqHfN

    Score
    8/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks