Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d68115ccebd3c33cad444ff3df830435acffd7b82818275eb9382e9e7b34b6e2

  • Size

    99KB

  • Sample

    221204-lmc3gsbf3y

  • MD5

    fb0ff061283be69f0081e1ac374af7b9

  • SHA1

    7ef1d970ac7b38823bcfe205de1ca4fb3e88018e

  • SHA256

    d68115ccebd3c33cad444ff3df830435acffd7b82818275eb9382e9e7b34b6e2

  • SHA512

    87c3198e95e7c106b91e06b666f19b8bdf6fde8b78302408590a2c0a3b618070adb40fd71f3b45c723125e022a3699ca9a490c18e88921d5c0f02fe73398dd02

  • SSDEEP

    768:3iD+bdPmJjRNjk3emu4v/eA5aiua4z7VP7LdGSu2HyTAzfMgTAzfM0CAXQzj2fSe:3iDgdUjl54vbQh+

Score
8/10
upx

Malware Config

Targets

    • Target

      d68115ccebd3c33cad444ff3df830435acffd7b82818275eb9382e9e7b34b6e2

    • Size

      99KB

    • MD5

      fb0ff061283be69f0081e1ac374af7b9

    • SHA1

      7ef1d970ac7b38823bcfe205de1ca4fb3e88018e

    • SHA256

      d68115ccebd3c33cad444ff3df830435acffd7b82818275eb9382e9e7b34b6e2

    • SHA512

      87c3198e95e7c106b91e06b666f19b8bdf6fde8b78302408590a2c0a3b618070adb40fd71f3b45c723125e022a3699ca9a490c18e88921d5c0f02fe73398dd02

    • SSDEEP

      768:3iD+bdPmJjRNjk3emu4v/eA5aiua4z7VP7LdGSu2HyTAzfMgTAzfM0CAXQzj2fSe:3iDgdUjl54vbQh+

    Score
    8/10
    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks