Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

d7ce1acb5a...66.exe

windows7-x64

8

d7ce1acb5a...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d7ce1acb5a45d6e08d0c9cce182d084347f95bfc640c3feb1beb6698822d0666

  • Size

    150KB

  • Sample

    221206-yv1vqshg37

  • MD5

    1f7e1cff070dde46f57bdd3eb14d5f53

  • SHA1

    51b66922851561b994e27bc4a48d139938e3aa33

  • SHA256

    d7ce1acb5a45d6e08d0c9cce182d084347f95bfc640c3feb1beb6698822d0666

  • SHA512

    695f5608067707ed3dd5b0f0e81b2eb05ad6856d46e804f7d50f7e24cb6d9e733f9198b5c910e94993c7c30974accd6f5f854380e639bb6c2a7e98afbb2a3226

  • SSDEEP

    3072:mlollZEpI52d/pKHdR7a+Q389jDU5X2OfklU6:mlollWpi2d/QHdRSTe

Score
8/10

Malware Config

Targets

    • Target

      d7ce1acb5a45d6e08d0c9cce182d084347f95bfc640c3feb1beb6698822d0666

    • Size

      150KB

    • MD5

      1f7e1cff070dde46f57bdd3eb14d5f53

    • SHA1

      51b66922851561b994e27bc4a48d139938e3aa33

    • SHA256

      d7ce1acb5a45d6e08d0c9cce182d084347f95bfc640c3feb1beb6698822d0666

    • SHA512

      695f5608067707ed3dd5b0f0e81b2eb05ad6856d46e804f7d50f7e24cb6d9e733f9198b5c910e94993c7c30974accd6f5f854380e639bb6c2a7e98afbb2a3226

    • SSDEEP

      3072:mlollZEpI52d/pKHdR7a+Q389jDU5X2OfklU6:mlollWpi2d/QHdRSTe

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks