Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c
-
Size
212KB
-
Sample
221129-dx5aqaed8x
-
MD5
5dfa956c8d81c70898e1fc7a2b623cbb
-
SHA1
24261d8dcbec5a2c6772d11ad0fd83809ba38108
-
SHA256
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c
-
SHA512
b7ca31252de3a6af222043769a4067215a5b21d996438ff100bbb693edc9d30450159c7ac7bed7fd4bbe94ceab4a45d175186b201688590752b7f5f808527eb3
-
SSDEEP
6144:yaabJI19s7ZWfByqIFBp5lK6guLBR80W18ydI:ya4Ins7ZWfByqIbp5XLBW028yd
Static task
static1
Behavioral task
behavioral1
Sample
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c
-
Size
212KB
-
MD5
5dfa956c8d81c70898e1fc7a2b623cbb
-
SHA1
24261d8dcbec5a2c6772d11ad0fd83809ba38108
-
SHA256
dc7f99a58817d499b43ecb193f1faca12a0667a092bd219c5e3ad4d8a7ccb49c
-
SHA512
b7ca31252de3a6af222043769a4067215a5b21d996438ff100bbb693edc9d30450159c7ac7bed7fd4bbe94ceab4a45d175186b201688590752b7f5f808527eb3
-
SSDEEP
6144:yaabJI19s7ZWfByqIFBp5lK6guLBR80W18ydI:ya4Ins7ZWfByqIbp5XLBW028yd
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-