Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f9482bb02601f897d980e64e4b54fe3c.exe

  • Size

    10KB

  • Sample

    221015-g52rcafcd8

  • MD5

    f9482bb02601f897d980e64e4b54fe3c

  • SHA1

    bbaf763d8b26f468f6d4fb5cb631e3fedb3c965b

  • SHA256

    a20d62110e3e9d2659ee55299033ff3542bdce0b669f299dad18dddce4ddc1af

  • SHA512

    f0b2dcb4403d6b709a327fdf3533ff80272ccf4618e094fa7727564d0f47cf83cff2568615c331062c4b21fa21755b62c88acea466ac96627aeba120244a9d6d

  • SSDEEP

    192:ZBlbXZH5KcyeRrUt0cgh8/2PnH/7AvBp:ZBkurM05S/2vHzM

Score
8/10

Malware Config

Targets

    • Target

      f9482bb02601f897d980e64e4b54fe3c.exe

    • Size

      10KB

    • MD5

      f9482bb02601f897d980e64e4b54fe3c

    • SHA1

      bbaf763d8b26f468f6d4fb5cb631e3fedb3c965b

    • SHA256

      a20d62110e3e9d2659ee55299033ff3542bdce0b669f299dad18dddce4ddc1af

    • SHA512

      f0b2dcb4403d6b709a327fdf3533ff80272ccf4618e094fa7727564d0f47cf83cff2568615c331062c4b21fa21755b62c88acea466ac96627aeba120244a9d6d

    • SSDEEP

      192:ZBlbXZH5KcyeRrUt0cgh8/2PnH/7AvBp:ZBkurM05S/2vHzM

    Score
    8/10
    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks