Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3e9f2c1bd1...cf.exe

windows7-x64

8

3e9f2c1bd1...cf.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e9f2c1bd116ccfcd0dcb3051cb40e3912155b737e11c68cc3ceb28657f612cf

  • Size

    180KB

  • Sample

    221203-xb31baac2s

  • MD5

    36b042b638d078361033f9c7ddb086c2

  • SHA1

    da39b60eea08bbb2444d1e43434269d561e7c743

  • SHA256

    3e9f2c1bd116ccfcd0dcb3051cb40e3912155b737e11c68cc3ceb28657f612cf

  • SHA512

    70251434d87f0228ade039ba6db54599b3a3ca126b708c0e8ec19accf8c6b34bfa3da2cb92569be6bb4f7ee73da8795e656efef6e138b5ffcc3696101491dece

  • SSDEEP

    3072:6BAp5XhKpN4eOyVTGfhEClj8jTk+0hdm5Bar3j9:JbXE9OiTGfhEClq9v5Azj9

Score
8/10

Malware Config

Targets

    • Target

      3e9f2c1bd116ccfcd0dcb3051cb40e3912155b737e11c68cc3ceb28657f612cf

    • Size

      180KB

    • MD5

      36b042b638d078361033f9c7ddb086c2

    • SHA1

      da39b60eea08bbb2444d1e43434269d561e7c743

    • SHA256

      3e9f2c1bd116ccfcd0dcb3051cb40e3912155b737e11c68cc3ceb28657f612cf

    • SHA512

      70251434d87f0228ade039ba6db54599b3a3ca126b708c0e8ec19accf8c6b34bfa3da2cb92569be6bb4f7ee73da8795e656efef6e138b5ffcc3696101491dece

    • SSDEEP

      3072:6BAp5XhKpN4eOyVTGfhEClj8jTk+0hdm5Bar3j9:JbXE9OiTGfhEClq9v5Azj9

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks