Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    858887b380596f12cbe30e3392b88ce7f8a9db25955034d94ec2a772d9a01ab3

  • Size

    435KB

  • Sample

    221203-mqcfssfg41

  • MD5

    dde59803ad21998c769f45975bc028eb

  • SHA1

    058b4c801773d6acd2e1a4a4d2fc51698090d05f

  • SHA256

    858887b380596f12cbe30e3392b88ce7f8a9db25955034d94ec2a772d9a01ab3

  • SHA512

    fc1debe4b2648c5f08d9ca5f2ab212009f847681cb6c0a37953806bec981869687f12b0e697305a526b1ba984309335fee56f19419fbc94cd5282d6141ce3171

  • SSDEEP

    12288:gG4vQqF148+hgIWOMaAto70A1BbZq9kl4M:mr42KMaxp16M

Malware Config

Targets

    • Target

      858887b380596f12cbe30e3392b88ce7f8a9db25955034d94ec2a772d9a01ab3

    • Size

      435KB

    • MD5

      dde59803ad21998c769f45975bc028eb

    • SHA1

      058b4c801773d6acd2e1a4a4d2fc51698090d05f

    • SHA256

      858887b380596f12cbe30e3392b88ce7f8a9db25955034d94ec2a772d9a01ab3

    • SHA512

      fc1debe4b2648c5f08d9ca5f2ab212009f847681cb6c0a37953806bec981869687f12b0e697305a526b1ba984309335fee56f19419fbc94cd5282d6141ce3171

    • SSDEEP

      12288:gG4vQqF148+hgIWOMaAto70A1BbZq9kl4M:mr42KMaxp16M

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks