Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

c420063487...d6.exe

windows7-x64

8

c420063487...d6.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c420063487050c49f8adc8738d22cbecf369d5d91a8c4aa0a3d12d619d4c77d6

  • Size

    733KB

  • Sample

    221203-r1f9ysdc4w

  • MD5

    8d785f76e225f71d7344a72ee1c7843d

  • SHA1

    bcb8fb534ed3381140e9ecb9ee399890c6532ac2

  • SHA256

    c420063487050c49f8adc8738d22cbecf369d5d91a8c4aa0a3d12d619d4c77d6

  • SHA512

    c917f0a543ae8c640ad483fb709357fcf81b1f5a5a5d03fc49f502d41773ab52fbba6552db3ba88cf315b9918fd8caa1c6e419c26817923fdb6930f8b92af20d

  • SSDEEP

    12288:D5OG17KmKCKHamcQ+HLwUVKQNC20O2baimSH50zkUALaUzWzu5SY/7+kPrMZ7u:DIG1BKCKHqQmLVKQNCBO2P50oIPY/C6h

Score
8/10
persistence

Malware Config

Targets

    • Target

      c420063487050c49f8adc8738d22cbecf369d5d91a8c4aa0a3d12d619d4c77d6

    • Size

      733KB

    • MD5

      8d785f76e225f71d7344a72ee1c7843d

    • SHA1

      bcb8fb534ed3381140e9ecb9ee399890c6532ac2

    • SHA256

      c420063487050c49f8adc8738d22cbecf369d5d91a8c4aa0a3d12d619d4c77d6

    • SHA512

      c917f0a543ae8c640ad483fb709357fcf81b1f5a5a5d03fc49f502d41773ab52fbba6552db3ba88cf315b9918fd8caa1c6e419c26817923fdb6930f8b92af20d

    • SSDEEP

      12288:D5OG17KmKCKHamcQ+HLwUVKQNC20O2baimSH50zkUALaUzWzu5SY/7+kPrMZ7u:DIG1BKCKHqQmLVKQNCBO2P50oIPY/C6h

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks