Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16bcb4399443c51e2225a621e348c32eb53280d75cb6fe3cc6031d2790df017d

  • Size

    20KB

  • Sample

    221030-gxrleafbe5

  • MD5

    92bf68dd3665bfa20e535ff4b35b45c0

  • SHA1

    9a9d782690d7d4c1c60264deef3cc3852ee4f7c8

  • SHA256

    16bcb4399443c51e2225a621e348c32eb53280d75cb6fe3cc6031d2790df017d

  • SHA512

    9b0171586dbdef314b8ea6f8b76a5da48effd9c3400ef0af89afc0180437056e2002af7b405d997e6217885a7f61b03ba38a13ed7f0420aa24641ab1b465f735

  • SSDEEP

    192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBzwHOe:1M3PnQoHDCpHf4I4Qwdc0G5KDJRwt

Score
8/10

Malware Config

Targets

    • Target

      16bcb4399443c51e2225a621e348c32eb53280d75cb6fe3cc6031d2790df017d

    • Size

      20KB

    • MD5

      92bf68dd3665bfa20e535ff4b35b45c0

    • SHA1

      9a9d782690d7d4c1c60264deef3cc3852ee4f7c8

    • SHA256

      16bcb4399443c51e2225a621e348c32eb53280d75cb6fe3cc6031d2790df017d

    • SHA512

      9b0171586dbdef314b8ea6f8b76a5da48effd9c3400ef0af89afc0180437056e2002af7b405d997e6217885a7f61b03ba38a13ed7f0420aa24641ab1b465f735

    • SSDEEP

      192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBzwHOe:1M3PnQoHDCpHf4I4Qwdc0G5KDJRwt

    Score
    8/10
    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks