Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

d6065c4e70...43.exe

windows7-x64

5

d6065c4e70...43.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d6065c4e700d99a2d864e9dc2bb79150494397de681334e9c2a2581be3b4a743

  • Size

    38KB

  • Sample

    221201-s4bz3sgb9v

  • MD5

    319e6acc4cf60abfd3c42f737f907d4e

  • SHA1

    ae6f911670d7b6fc80a9374b9dd7eb49d1d296c5

  • SHA256

    d6065c4e700d99a2d864e9dc2bb79150494397de681334e9c2a2581be3b4a743

  • SHA512

    85e01457e8548a39f236c4a4c619276cf92ca5211b63424c2ee1ef524ca5a476350d199ed6d7b7e319b7303d48e8324df5b1e3ed0cf37218f11d15786d869901

  • SSDEEP

    768:FFe7tEyaKaorzIgQGgV7qw2ZqoAX7W8UnY7:/caKaorzIgzgZqwmqRX7IY7

Score
7/10
persistence

Malware Config

Targets

    • Target

      d6065c4e700d99a2d864e9dc2bb79150494397de681334e9c2a2581be3b4a743

    • Size

      38KB

    • MD5

      319e6acc4cf60abfd3c42f737f907d4e

    • SHA1

      ae6f911670d7b6fc80a9374b9dd7eb49d1d296c5

    • SHA256

      d6065c4e700d99a2d864e9dc2bb79150494397de681334e9c2a2581be3b4a743

    • SHA512

      85e01457e8548a39f236c4a4c619276cf92ca5211b63424c2ee1ef524ca5a476350d199ed6d7b7e319b7303d48e8324df5b1e3ed0cf37218f11d15786d869901

    • SSDEEP

      768:FFe7tEyaKaorzIgQGgV7qw2ZqoAX7W8UnY7:/caKaorzIgzgZqwmqRX7IY7

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks