Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

d1327799cc...5d.exe

windows7-x64

8

d1327799cc...5d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d1327799cc2518e526c3821431a0f619c8bc82e909303ff750d85b1e2a950b5d

  • Size

    151KB

  • Sample

    221203-exmaksgh51

  • MD5

    44667825e4463f2eef4410a36e4f442c

  • SHA1

    6acf2b01f4f8bd5af3837a486ee2ae7df5b3d4f0

  • SHA256

    d1327799cc2518e526c3821431a0f619c8bc82e909303ff750d85b1e2a950b5d

  • SHA512

    952c56f36dea369179ef30a57710030534fa1ff4d26d8d6a40eccb26343418d0d1e4a19545f0693c4a99f15ba56d05bff31a75bea3ddfb590173da7f5b0215b2

  • SSDEEP

    1536:0289yVVa3PIZ2otlrcKEFHQ10KgxQ19KKp5l5QWLHGQ84V6oDF+CuR1p35sHUndm:zn2otlrlGw1tl1lLj84V6WF+3P5dnd

Score
8/10
persistence

Malware Config

Targets

    • Target

      d1327799cc2518e526c3821431a0f619c8bc82e909303ff750d85b1e2a950b5d

    • Size

      151KB

    • MD5

      44667825e4463f2eef4410a36e4f442c

    • SHA1

      6acf2b01f4f8bd5af3837a486ee2ae7df5b3d4f0

    • SHA256

      d1327799cc2518e526c3821431a0f619c8bc82e909303ff750d85b1e2a950b5d

    • SHA512

      952c56f36dea369179ef30a57710030534fa1ff4d26d8d6a40eccb26343418d0d1e4a19545f0693c4a99f15ba56d05bff31a75bea3ddfb590173da7f5b0215b2

    • SSDEEP

      1536:0289yVVa3PIZ2otlrcKEFHQ10KgxQ19KKp5l5QWLHGQ84V6oDF+CuR1p35sHUndm:zn2otlrlGw1tl1lLj84V6WF+3P5dnd

    Score
    8/10
    persistence

    • Modifies AppInit DLL entries

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks