Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd

  • Size

    3.9MB

  • Sample

    221203-znp1bsdh67

  • MD5

    7a82bdeb3177ea9324dff7fb205c56c7

  • SHA1

    c2afd496d721aca16f8866614ad9f23f9e376680

  • SHA256

    de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd

  • SHA512

    353cddb911b0d656d25e9b52f0ecda244c8e836bd65391111fe629dacff96a770f567647b724f1eb0c9dea6931361c0412f69ef5a92a453521f15d61711b8390

  • SSDEEP

    12288:HPwdP/PFdPZdP2PFdPZdPxPFdPZdPWPFdPZdPvPFdPZdP0PFdPZdPRPFdPZdPaPo:

Score
8/10
upx

Malware Config

Targets

    • Target

      de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd

    • Size

      3.9MB

    • MD5

      7a82bdeb3177ea9324dff7fb205c56c7

    • SHA1

      c2afd496d721aca16f8866614ad9f23f9e376680

    • SHA256

      de8a81a173b3091199584130ec8d33496858179c481fdc48918afbb0064332dd

    • SHA512

      353cddb911b0d656d25e9b52f0ecda244c8e836bd65391111fe629dacff96a770f567647b724f1eb0c9dea6931361c0412f69ef5a92a453521f15d61711b8390

    • SSDEEP

      12288:HPwdP/PFdPZdP2PFdPZdPxPFdPZdPWPFdPZdPvPFdPZdP0PFdPZdPRPFdPZdPaPo:

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks