Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a379476058879b10ca78cf12af211667b68080c16358d17cefe3278236e3c75a

  • Size

    17KB

  • Sample

    221206-z5bt2aea27

  • MD5

    682322be78c09391a2498fff0b68b26e

  • SHA1

    fdfcd40ad53875b872ee0d184b10a7b4028d877d

  • SHA256

    a379476058879b10ca78cf12af211667b68080c16358d17cefe3278236e3c75a

  • SHA512

    f746be52f5ea5b1ac7e8a12e710911922b5bab142c6c5fe1ded61d6aba563c2a36c59b976285b9a3f4e791111e15569d7d0970d63b4458adcaa7bb87889f12a2

  • SSDEEP

    384:c2CXSCCyEl3w5E3sxJg9OVkMlOpnAQxmatqGfry6LUq:Nysw5E32cOVkMl+AQxzq0ry0

Score
8/10

Malware Config

Targets

    • Target

      a379476058879b10ca78cf12af211667b68080c16358d17cefe3278236e3c75a

    • Size

      17KB

    • MD5

      682322be78c09391a2498fff0b68b26e

    • SHA1

      fdfcd40ad53875b872ee0d184b10a7b4028d877d

    • SHA256

      a379476058879b10ca78cf12af211667b68080c16358d17cefe3278236e3c75a

    • SHA512

      f746be52f5ea5b1ac7e8a12e710911922b5bab142c6c5fe1ded61d6aba563c2a36c59b976285b9a3f4e791111e15569d7d0970d63b4458adcaa7bb87889f12a2

    • SSDEEP

      384:c2CXSCCyEl3w5E3sxJg9OVkMlOpnAQxmatqGfry6LUq:Nysw5E32cOVkMl+AQxzq0ry0

    Score
    8/10
    • Modifies AppInit DLL entries

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks