Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e6a0e25a6cc046b54a861de9d9692391827a6a1ae37924ea4b2389f27e131d7f

  • Size

    501KB

  • Sample

    221203-xlyhksbb3z

  • MD5

    e40043ca830f0cb77887f8e1e1d5cbe2

  • SHA1

    7316e9ea61c83a28f0d5cc37690cc3f9fff72cc0

  • SHA256

    e6a0e25a6cc046b54a861de9d9692391827a6a1ae37924ea4b2389f27e131d7f

  • SHA512

    eac0bb945ee52a6e457a710df5ea6f11d839102e1ae6abdb2f1a2db724c4989c39ed0f20e82b7e409f3876169e9ca325736ea88ff0726d873f608509ed40943d

  • SSDEEP

    12288:d6TcTq0rfJDGv5rwiglwHZcyDyGXuwNR9nu/yqeD:+Qq+Gv5rw7kZpDXewFu6qe

Malware Config

Targets

    • Target

      e6a0e25a6cc046b54a861de9d9692391827a6a1ae37924ea4b2389f27e131d7f

    • Size

      501KB

    • MD5

      e40043ca830f0cb77887f8e1e1d5cbe2

    • SHA1

      7316e9ea61c83a28f0d5cc37690cc3f9fff72cc0

    • SHA256

      e6a0e25a6cc046b54a861de9d9692391827a6a1ae37924ea4b2389f27e131d7f

    • SHA512

      eac0bb945ee52a6e457a710df5ea6f11d839102e1ae6abdb2f1a2db724c4989c39ed0f20e82b7e409f3876169e9ca325736ea88ff0726d873f608509ed40943d

    • SSDEEP

      12288:d6TcTq0rfJDGv5rwiglwHZcyDyGXuwNR9nu/yqeD:+Qq+Gv5rw7kZpDXewFu6qe

    • UAC bypass

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks