Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

gootloader-payload.js

windows7-x64

3

gootloader-payload.js

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    gootloader-payload.js

  • Size

    507KB

  • Sample

    221020-qectzaefgk

  • MD5

    7f8d06ef42e2c6c948269ce6596269ac

  • SHA1

    ba671f89682e5dd24c714222309a88c0ac89d57c

  • SHA256

    fe7b2838f5a5cf6b943301c4087d9f9038bb39eddbb453cd5b419f4e09bc3b7d

  • SHA512

    9dbaeb23d06aa06f7376027b2766a32ab5c0f0932970f8bfcba4d3258547f9a4bdbf13338fee610d041c1c88c3bcd424b6d3c8abb54636357afe312d6a9e9345

  • SSDEEP

    12288:hC+4odILiIoJUzbxA5ITh8QSm/kqQqvw8Hg38:h14oy/oezbxSITyZ9qQqvpg38

Score
8/10

Malware Config

Targets

    • Target

      gootloader-payload.js

    • Size

      507KB

    • MD5

      7f8d06ef42e2c6c948269ce6596269ac

    • SHA1

      ba671f89682e5dd24c714222309a88c0ac89d57c

    • SHA256

      fe7b2838f5a5cf6b943301c4087d9f9038bb39eddbb453cd5b419f4e09bc3b7d

    • SHA512

      9dbaeb23d06aa06f7376027b2766a32ab5c0f0932970f8bfcba4d3258547f9a4bdbf13338fee610d041c1c88c3bcd424b6d3c8abb54636357afe312d6a9e9345

    • SSDEEP

      12288:hC+4odILiIoJUzbxA5ITh8QSm/kqQqvw8Hg38:h14oy/oezbxSITyZ9qQqvpg38

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks