Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

8

c815a13e1a...15.exe

windows7-x64

10

c815a13e1a...15.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c815a13e1aa44be2c3c55c358799eef48edfc97efe7846fee339f4abf0e6d315

  • Size

    141KB

  • Sample

    221203-31a9gsgh57

  • MD5

    199a2d76ce2930cdc60fe37c419de749

  • SHA1

    d521c0d8160bfa91c76c7fb9c9735c4156ab0859

  • SHA256

    c815a13e1aa44be2c3c55c358799eef48edfc97efe7846fee339f4abf0e6d315

  • SHA512

    29eb1a0567c46a06a37bd2ed571275ff7e013456050287b39fa70e52e8d668d792e4dd7d843f1089d09c0bd3713eab28a77cec9247e61a163bbb7c785035fd98

  • SSDEEP

    3072:Y7nmcSp5MJ4jEltN/WvaR4NSBxdYPTAyGAN0O4JY1MK:YzmD5MJVd/WvaWNixdY7MBWuK

Score
10/10
evasionpersistenceupx

Malware Config

Targets

    • Target

      c815a13e1aa44be2c3c55c358799eef48edfc97efe7846fee339f4abf0e6d315

    • Size

      141KB

    • MD5

      199a2d76ce2930cdc60fe37c419de749

    • SHA1

      d521c0d8160bfa91c76c7fb9c9735c4156ab0859

    • SHA256

      c815a13e1aa44be2c3c55c358799eef48edfc97efe7846fee339f4abf0e6d315

    • SHA512

      29eb1a0567c46a06a37bd2ed571275ff7e013456050287b39fa70e52e8d668d792e4dd7d843f1089d09c0bd3713eab28a77cec9247e61a163bbb7c785035fd98

    • SSDEEP

      3072:Y7nmcSp5MJ4jEltN/WvaR4NSBxdYPTAyGAN0O4JY1MK:YzmD5MJVd/WvaWNixdY7MBWuK

    Score
    10/10
    evasionpersistenceupx

    • Modifies WinLogon for persistence

      persistence

    • Disables Task Manager via registry modification

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks