Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c

  • Size

    212KB

  • Sample

    221129-dx5aqaed8x

  • MD5

    5dfa956c8d81c70898e1fc7a2b623cbb

  • SHA1

    24261d8dcbec5a2c6772d11ad0fd83809ba38108

  • SHA256

    dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c

  • SHA512

    b7ca31252de3a6af222043769a4067215a5b21d996438ff100bbb693edc9d30450159c7ac7bed7fd4bbe94ceab4a45d175186b201688590752b7f5f808527eb3

  • SSDEEP

    6144:yaabJI19s7ZWfByqIFBp5lK6guLBR80W18ydI:ya4Ins7ZWfByqIbp5XLBW028yd

Score
10/10

Malware Config

Targets

    • Target

      dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c

    • Size

      212KB

    • MD5

      5dfa956c8d81c70898e1fc7a2b623cbb

    • SHA1

      24261d8dcbec5a2c6772d11ad0fd83809ba38108

    • SHA256

      dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c

    • SHA512

      b7ca31252de3a6af222043769a4067215a5b21d996438ff100bbb693edc9d30450159c7ac7bed7fd4bbe94ceab4a45d175186b201688590752b7f5f808527eb3

    • SSDEEP

      6144:yaabJI19s7ZWfByqIFBp5lK6guLBR80W18ydI:ya4Ins7ZWfByqIbp5XLBW028yd

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v6

Tasks