Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

32bb625863...d3.exe

windows7-x64

8

32bb625863...d3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    32bb625863ebe5b9f950ad0a5772417f6373f9d6291b5c8b8a7bad85656c79d3

  • Size

    225KB

  • Sample

    221127-twaygsbd48

  • MD5

    e70248a4fba71b348fc4519390fe7a3a

  • SHA1

    652368e6a4dd52d40a43d4abe32409a811d522b1

  • SHA256

    32bb625863ebe5b9f950ad0a5772417f6373f9d6291b5c8b8a7bad85656c79d3

  • SHA512

    67f55c7495d25357c9167a5d2b17079a98c273b809dc8c69824e525c7d4054eb2ca83a45bd0b988033f7add8c65e6d542b08ea815885353e9e0d88a32707e121

  • SSDEEP

    6144:42sv4O06yy68dzbnNTO1EcEnGnpvkTE5NPgkGPAN9c:pA4O0NynJjNa1EcEn+rPgkI6c

Score
8/10
persistence

Malware Config

Targets

    • Target

      32bb625863ebe5b9f950ad0a5772417f6373f9d6291b5c8b8a7bad85656c79d3

    • Size

      225KB

    • MD5

      e70248a4fba71b348fc4519390fe7a3a

    • SHA1

      652368e6a4dd52d40a43d4abe32409a811d522b1

    • SHA256

      32bb625863ebe5b9f950ad0a5772417f6373f9d6291b5c8b8a7bad85656c79d3

    • SHA512

      67f55c7495d25357c9167a5d2b17079a98c273b809dc8c69824e525c7d4054eb2ca83a45bd0b988033f7add8c65e6d542b08ea815885353e9e0d88a32707e121

    • SSDEEP

      6144:42sv4O06yy68dzbnNTO1EcEnGnpvkTE5NPgkGPAN9c:pA4O0NynJjNa1EcEn+rPgkI6c

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks