Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

a48ee8ffa1...8d.exe

windows7-x64

8

a48ee8ffa1...8d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a48ee8ffa139b2e35437dbead32fb73859f876939a597cbe00380a56fbbc278d

  • Size

    38KB

  • Sample

    221029-146hpahch6

  • MD5

    83afa33b3a5c9eaf2ca4d729e5b226b4

  • SHA1

    7e4ef8c599b1d8ba61cd6f7bb42cdeabc4d1e541

  • SHA256

    a48ee8ffa139b2e35437dbead32fb73859f876939a597cbe00380a56fbbc278d

  • SHA512

    a1b1bee07caed835656af58d33ed5a554bb2ed8d6a3c0c77e32e4457898e2fc4f096f89ff8be42dbfb26f46886e839aa5238bc82cd8c97beee7433b46a35943a

  • SSDEEP

    768:/IU89GioLcKqgrTr19bWXB6hN5QpBryb0A4TDQnOA:189GQKJ6McfryAT

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      a48ee8ffa139b2e35437dbead32fb73859f876939a597cbe00380a56fbbc278d

    • Size

      38KB

    • MD5

      83afa33b3a5c9eaf2ca4d729e5b226b4

    • SHA1

      7e4ef8c599b1d8ba61cd6f7bb42cdeabc4d1e541

    • SHA256

      a48ee8ffa139b2e35437dbead32fb73859f876939a597cbe00380a56fbbc278d

    • SHA512

      a1b1bee07caed835656af58d33ed5a554bb2ed8d6a3c0c77e32e4457898e2fc4f096f89ff8be42dbfb26f46886e839aa5238bc82cd8c97beee7433b46a35943a

    • SSDEEP

      768:/IU89GioLcKqgrTr19bWXB6hN5QpBryb0A4TDQnOA:189GQKJ6McfryAT

    Score
    8/10
    evasionpersistence

    • Executes dropped EXE

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks