Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1331f120e8...11.exe

windows7-x64

8

1331f120e8...11.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1331f120e8a4348e4ac0d0018f08ffa240ac8be193c16caf65bdeef9e5bc5a11

  • Size

    171KB

  • Sample

    221020-1znr3sgeh3

  • MD5

    5b30987914c5bbd8060b53dbf254afda

  • SHA1

    5905696174a3889a38185b1e748b8a215b44d799

  • SHA256

    1331f120e8a4348e4ac0d0018f08ffa240ac8be193c16caf65bdeef9e5bc5a11

  • SHA512

    360b531d8716d1e1d90dbffec4366304750c508d7bf370e0ba1970ef037dcffb0ccbd5ce8b2928a592a07a44f096bc124c7519ce6afc57a2cee9ddee013d9e8b

  • SSDEEP

    3072:jBAp5XhKpN4eOyVTGfhEClj8jTk+0havEK4lXM:ObXE9OiTGfhEClq9gKZ

Score
8/10

Malware Config

Targets

    • Target

      1331f120e8a4348e4ac0d0018f08ffa240ac8be193c16caf65bdeef9e5bc5a11

    • Size

      171KB

    • MD5

      5b30987914c5bbd8060b53dbf254afda

    • SHA1

      5905696174a3889a38185b1e748b8a215b44d799

    • SHA256

      1331f120e8a4348e4ac0d0018f08ffa240ac8be193c16caf65bdeef9e5bc5a11

    • SHA512

      360b531d8716d1e1d90dbffec4366304750c508d7bf370e0ba1970ef037dcffb0ccbd5ce8b2928a592a07a44f096bc124c7519ce6afc57a2cee9ddee013d9e8b

    • SSDEEP

      3072:jBAp5XhKpN4eOyVTGfhEClj8jTk+0havEK4lXM:ObXE9OiTGfhEClq9gKZ

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks