Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

f6ddecb826...6b.exe

windows7-x64

8

f6ddecb826...6b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f6ddecb8263d612902074ebe839d2c6a23e2ba08a89e890a81b81faeaa082d6b

  • Size

    151KB

  • Sample

    221129-pclhnabc5s

  • MD5

    4e47c89610cdae2aac3d33f5135047f8

  • SHA1

    114512b95e45177d865d84d5489b4c9f5f3c3775

  • SHA256

    f6ddecb8263d612902074ebe839d2c6a23e2ba08a89e890a81b81faeaa082d6b

  • SHA512

    ddf7cf7028d3a13ed817755e89d67379ef761aa7059f2cb023e734ddea76624a65354fa9e657389e7a39c42155b0e5af30ea9b83b1a9ac94db8ff26eb7cc1068

  • SSDEEP

    3072:CBAp5XhKpN4eOyVTGfhEClj8jTk+0h22v4M/x8dwNwM:RbXE9OiTGfhEClq93+pwM

Score
8/10

Malware Config

Targets

    • Target

      f6ddecb8263d612902074ebe839d2c6a23e2ba08a89e890a81b81faeaa082d6b

    • Size

      151KB

    • MD5

      4e47c89610cdae2aac3d33f5135047f8

    • SHA1

      114512b95e45177d865d84d5489b4c9f5f3c3775

    • SHA256

      f6ddecb8263d612902074ebe839d2c6a23e2ba08a89e890a81b81faeaa082d6b

    • SHA512

      ddf7cf7028d3a13ed817755e89d67379ef761aa7059f2cb023e734ddea76624a65354fa9e657389e7a39c42155b0e5af30ea9b83b1a9ac94db8ff26eb7cc1068

    • SSDEEP

      3072:CBAp5XhKpN4eOyVTGfhEClj8jTk+0h22v4M/x8dwNwM:RbXE9OiTGfhEClq93+pwM

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks