Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

8b045f40d0...dd.exe

windows7-x64

8

8b045f40d0...dd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b045f40d0bce83a14cd05ab408d7ae14e2c044b3141446d5bde31f6ffc9c4dd

  • Size

    14KB

  • Sample

    221107-xzw7nsdgb5

  • MD5

    0de95947b0c7e4515e104eef17ea4322

  • SHA1

    7926ebe1ac582c8ea7421fe4209ad2b8fe37957d

  • SHA256

    8b045f40d0bce83a14cd05ab408d7ae14e2c044b3141446d5bde31f6ffc9c4dd

  • SHA512

    f98be3d89105f296984a3232aecf27dce727d753cdff86585de94f261cde2d75123a5f494e07d6f8318b09c9bec3ae1b138b8870acf7bcb839abd8f34b7fc7d5

  • SSDEEP

    384:byi8T5ePaOaNJawcudoD7UG5A4VoeM4mK:byXTKsnbcuyD7UgVDz

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      8b045f40d0bce83a14cd05ab408d7ae14e2c044b3141446d5bde31f6ffc9c4dd

    • Size

      14KB

    • MD5

      0de95947b0c7e4515e104eef17ea4322

    • SHA1

      7926ebe1ac582c8ea7421fe4209ad2b8fe37957d

    • SHA256

      8b045f40d0bce83a14cd05ab408d7ae14e2c044b3141446d5bde31f6ffc9c4dd

    • SHA512

      f98be3d89105f296984a3232aecf27dce727d753cdff86585de94f261cde2d75123a5f494e07d6f8318b09c9bec3ae1b138b8870acf7bcb839abd8f34b7fc7d5

    • SSDEEP

      384:byi8T5ePaOaNJawcudoD7UG5A4VoeM4mK:byXTKsnbcuyD7UgVDz

    Score
    8/10
    upxpersistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks