Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

4741076bc1...d4.exe

windows7-x64

8

4741076bc1...d4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4741076bc189ff0790ca18dc87f3ddf037a35d56c17ff82bc2c7f9c13d6f41d4

  • Size

    172KB

  • Sample

    221202-vy5rbace71

  • MD5

    5b06da69123e9439f139c0d9b394d4a5

  • SHA1

    2e1e3321e0947f2321e338d80df5ec76777da22f

  • SHA256

    4741076bc189ff0790ca18dc87f3ddf037a35d56c17ff82bc2c7f9c13d6f41d4

  • SHA512

    e5c75499faa38da1031c5e0f88a4f9ccbf4f3fef5f27e69b0405d52baa58e5b9563f6508ca0e10e38983927e37777f1dfeb9638f9ba4ba654899d4777cc88252

  • SSDEEP

    3072:sBAp5XhKpN4eOyVTGfhEClj8jTk+0hax4BcPoc:bbXE9OiTGfhEClq9hGQ

Score
8/10

Malware Config

Targets

    • Target

      4741076bc189ff0790ca18dc87f3ddf037a35d56c17ff82bc2c7f9c13d6f41d4

    • Size

      172KB

    • MD5

      5b06da69123e9439f139c0d9b394d4a5

    • SHA1

      2e1e3321e0947f2321e338d80df5ec76777da22f

    • SHA256

      4741076bc189ff0790ca18dc87f3ddf037a35d56c17ff82bc2c7f9c13d6f41d4

    • SHA512

      e5c75499faa38da1031c5e0f88a4f9ccbf4f3fef5f27e69b0405d52baa58e5b9563f6508ca0e10e38983927e37777f1dfeb9638f9ba4ba654899d4777cc88252

    • SSDEEP

      3072:sBAp5XhKpN4eOyVTGfhEClj8jTk+0hax4BcPoc:bbXE9OiTGfhEClq9hGQ

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks