Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d670df86f585fadc670d23efe592cf48dce1a3870f63743cb8430fd9cdc45497

  • Size

    81KB

  • Sample

    221129-vtzz9sce41

  • MD5

    db677cc452379b31ab4242eb67e3c5d3

  • SHA1

    43d4d9cc6839c4a29024e016fa0cdbb2e560ce13

  • SHA256

    d670df86f585fadc670d23efe592cf48dce1a3870f63743cb8430fd9cdc45497

  • SHA512

    8e1770f848a834ebdb334500d4944c157db69d40805e1477530e1be92f451021f3133b9c1d53aa01fb1c0e37a932ced4542e7ff3d6019a219ead1fa1299dd630

  • SSDEEP

    1536:6mi+xxdgF45E4h2Hnq8OFnouy8CBZVDYTwtaRdoYVJ42e:6mi+/dgy5Ef8doutaZZYCajVJ4

Score
8/10

Malware Config

Targets

    • Target

      d670df86f585fadc670d23efe592cf48dce1a3870f63743cb8430fd9cdc45497

    • Size

      81KB

    • MD5

      db677cc452379b31ab4242eb67e3c5d3

    • SHA1

      43d4d9cc6839c4a29024e016fa0cdbb2e560ce13

    • SHA256

      d670df86f585fadc670d23efe592cf48dce1a3870f63743cb8430fd9cdc45497

    • SHA512

      8e1770f848a834ebdb334500d4944c157db69d40805e1477530e1be92f451021f3133b9c1d53aa01fb1c0e37a932ced4542e7ff3d6019a219ead1fa1299dd630

    • SSDEEP

      1536:6mi+xxdgF45E4h2Hnq8OFnouy8CBZVDYTwtaRdoYVJ42e:6mi+/dgy5Ef8doutaZZYCajVJ4

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks