Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c6ceb02cd726cc4d3b14bd425db38f1be24bfbebdbda8d18738947d733344a6a

  • Size

    68KB

  • Sample

    221011-caxrpahhd2

  • MD5

    657af217dc7ff720a69b95eecca650a0

  • SHA1

    8c3b480ffae6ff786e02758be7b7e3e49b5972e6

  • SHA256

    c6ceb02cd726cc4d3b14bd425db38f1be24bfbebdbda8d18738947d733344a6a

  • SHA512

    38881daef71909b2ee389a376b5d7b1168b4cc1e6db4de1d2b75e18f0effbfc310632407db2c7675e66f459820363b905595f7e17f1c12bb7fae0bf425518303

  • SSDEEP

    1536:sr+Fum5LMI+WTJjcXnXMcpm/zOxJXKJt1:sr+Fu2II+HXXMcI/AKJb

Score
8/10

Malware Config

Targets

    • Target

      c6ceb02cd726cc4d3b14bd425db38f1be24bfbebdbda8d18738947d733344a6a

    • Size

      68KB

    • MD5

      657af217dc7ff720a69b95eecca650a0

    • SHA1

      8c3b480ffae6ff786e02758be7b7e3e49b5972e6

    • SHA256

      c6ceb02cd726cc4d3b14bd425db38f1be24bfbebdbda8d18738947d733344a6a

    • SHA512

      38881daef71909b2ee389a376b5d7b1168b4cc1e6db4de1d2b75e18f0effbfc310632407db2c7675e66f459820363b905595f7e17f1c12bb7fae0bf425518303

    • SSDEEP

      1536:sr+Fum5LMI+WTJjcXnXMcpm/zOxJXKJt1:sr+Fu2II+HXXMcI/AKJb

    Score
    8/10
    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks