Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

af51d43ce8...36.exe

windows7-x64

8

af51d43ce8...36.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af51d43ce8689be750e3990ee02f6a5c6481ba6208bfceb72419eb85e5a1b836

  • Size

    184KB

  • Sample

    221204-nrbfkaac5s

  • MD5

    2d6c0ba7e4300aeb44dbe02ffb9edb41

  • SHA1

    a5965e259de6c1e6965f9e4857d5b3569c0544d8

  • SHA256

    af51d43ce8689be750e3990ee02f6a5c6481ba6208bfceb72419eb85e5a1b836

  • SHA512

    c32a3bdddd2b93023f881a7a344f6420108389faa50fc9d522f7331113bcf383a1fa6e31bc529239586c84e5f63bd1647ce94c44a087b6ee6b6015cec4151667

  • SSDEEP

    3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3/:/7BSH8zUB+nGESaaRvoB7FJNndne

Score
8/10

Malware Config

Targets

    • Target

      af51d43ce8689be750e3990ee02f6a5c6481ba6208bfceb72419eb85e5a1b836

    • Size

      184KB

    • MD5

      2d6c0ba7e4300aeb44dbe02ffb9edb41

    • SHA1

      a5965e259de6c1e6965f9e4857d5b3569c0544d8

    • SHA256

      af51d43ce8689be750e3990ee02f6a5c6481ba6208bfceb72419eb85e5a1b836

    • SHA512

      c32a3bdddd2b93023f881a7a344f6420108389faa50fc9d522f7331113bcf383a1fa6e31bc529239586c84e5f63bd1647ce94c44a087b6ee6b6015cec4151667

    • SSDEEP

      3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3/:/7BSH8zUB+nGESaaRvoB7FJNndne

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks