Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

dfab8d3bd3...4e.exe

windows7-x64

8

dfab8d3bd3...4e.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dfab8d3bd3b1ade1a6403cdcc8d73fa27b335269e3cf3d6175ef79a5034b024e

  • Size

    203KB

  • Sample

    221129-pcn9jsge38

  • MD5

    a64a7a2bbd294de605e480e82e810e12

  • SHA1

    74b580ca5df6ed5eded2db28fd68ff8ec622584b

  • SHA256

    dfab8d3bd3b1ade1a6403cdcc8d73fa27b335269e3cf3d6175ef79a5034b024e

  • SHA512

    f40803559b60f4971e2c66baab4adf272100cea97a1dd3598b2d64110a192535aaaed9056f3a54551e5fca62d1fc30c2279f7fba0ccc49d38f923e70bea4193f

  • SSDEEP

    3072:mBAp5XhKpN4eOyVTGfhEClj8jTk+0hu/MEPmWBMmvtGEcKJy9HnuthV9h+f2C8ws:dbXE9OiTGfhEClq9KEpf

Score
8/10

Malware Config

Targets

    • Target

      dfab8d3bd3b1ade1a6403cdcc8d73fa27b335269e3cf3d6175ef79a5034b024e

    • Size

      203KB

    • MD5

      a64a7a2bbd294de605e480e82e810e12

    • SHA1

      74b580ca5df6ed5eded2db28fd68ff8ec622584b

    • SHA256

      dfab8d3bd3b1ade1a6403cdcc8d73fa27b335269e3cf3d6175ef79a5034b024e

    • SHA512

      f40803559b60f4971e2c66baab4adf272100cea97a1dd3598b2d64110a192535aaaed9056f3a54551e5fca62d1fc30c2279f7fba0ccc49d38f923e70bea4193f

    • SSDEEP

      3072:mBAp5XhKpN4eOyVTGfhEClj8jTk+0hu/MEPmWBMmvtGEcKJy9HnuthV9h+f2C8ws:dbXE9OiTGfhEClq9KEpf

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks