Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1f7d74e5cc...f4.exe

windows7-x64

8

1f7d74e5cc...f4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f7d74e5ccf5681021323717359fb3efc6213d45ee84628c56f476f856477df4

  • Size

    228KB

  • Sample

    221027-fvjbksaha9

  • MD5

    f37f9160e2cf021983080ee0046529be

  • SHA1

    65095a67c453db178b5735e7ecbeccbf1338ed75

  • SHA256

    1f7d74e5ccf5681021323717359fb3efc6213d45ee84628c56f476f856477df4

  • SHA512

    e02014e203c776bf8f11ebd48dc9abf132a8a907fa87e21b0f37306b0924f56dce99af7ed5fbcd862b3c6173c7cf09335c2fc1d4edc6f5753bd16bfdbab2d5de

  • SSDEEP

    3072:at02MzGJiEWNgZEYCATuvcurAVI0XN0bHJJ2yMUp7JaHVKFqa:bNNguNATkAVI0iLFMiIKFqa

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      1f7d74e5ccf5681021323717359fb3efc6213d45ee84628c56f476f856477df4

    • Size

      228KB

    • MD5

      f37f9160e2cf021983080ee0046529be

    • SHA1

      65095a67c453db178b5735e7ecbeccbf1338ed75

    • SHA256

      1f7d74e5ccf5681021323717359fb3efc6213d45ee84628c56f476f856477df4

    • SHA512

      e02014e203c776bf8f11ebd48dc9abf132a8a907fa87e21b0f37306b0924f56dce99af7ed5fbcd862b3c6173c7cf09335c2fc1d4edc6f5753bd16bfdbab2d5de

    • SSDEEP

      3072:at02MzGJiEWNgZEYCATuvcurAVI0XN0bHJJ2yMUp7JaHVKFqa:bNNguNATkAVI0iLFMiIKFqa

    Score
    8/10
    discoverypersistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks