Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

5238fc6bf3...9d.exe

windows7-x64

8

5238fc6bf3...9d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5238fc6bf3af2fc3b88d102c4f4cf99d

  • Size

    5.5MB

  • Sample

    221025-dyfzhsbdfj

  • MD5

    5238fc6bf3af2fc3b88d102c4f4cf99d

  • SHA1

    7c53d7e2294b99d13987207e6649679239c1b7db

  • SHA256

    fdb421f4a654a5c34a0ac53fe5b8034076d294c846f6df5c645ca102b6f4caf0

  • SHA512

    15ced287df98da57549848983785925c18fadd2bd5033afe26c1b95a811f3f51bfd09da80ef8c829cb061d240cc21ef936d0105f72ca0afb7427b172026dfd96

  • SSDEEP

    98304:0kLbDnTP0AenE1XFbFqvb9/vJtkh7dAy9QdB4BC+4fo8os9YYHo9ty55lji:DbzTP0ZEdwbV50aB4hjYIjkn+

Score
8/10

Malware Config

Targets

    • Target

      5238fc6bf3af2fc3b88d102c4f4cf99d

    • Size

      5.5MB

    • MD5

      5238fc6bf3af2fc3b88d102c4f4cf99d

    • SHA1

      7c53d7e2294b99d13987207e6649679239c1b7db

    • SHA256

      fdb421f4a654a5c34a0ac53fe5b8034076d294c846f6df5c645ca102b6f4caf0

    • SHA512

      15ced287df98da57549848983785925c18fadd2bd5033afe26c1b95a811f3f51bfd09da80ef8c829cb061d240cc21ef936d0105f72ca0afb7427b172026dfd96

    • SSDEEP

      98304:0kLbDnTP0AenE1XFbFqvb9/vJtkh7dAy9QdB4BC+4fo8os9YYHo9ty55lji:DbzTP0ZEdwbV50aB4hjYIjkn+

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks