Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    697e62397fc23378fba522e74ea346037d824a3eaf9f6bd327463ec9f407801d

  • Size

    900KB

  • Sample

    221207-c7bwgsgg97

  • MD5

    198f415b24b28b8990a1f8f23d352150

  • SHA1

    4495cda6c0d58c6b63fc0d7a8140136a62b04acb

  • SHA256

    697e62397fc23378fba522e74ea346037d824a3eaf9f6bd327463ec9f407801d

  • SHA512

    f2408acb5bb6e8d521fdc0112f58d5ba9051cec8cde46c45771f95e476299c797537ae3d1185df2ddd0d6620d76740fc9ee0ee2f35386576936c2cb6031f4c0d

  • SSDEEP

    24576:/Wb6aXAxG3hB4LzNnAyXo/HrbszVjZGwcUhULRAB8s:9wxB4JARvrwVjwUhEmB8s

Score
8/10

Malware Config

Targets

    • Target

      697e62397fc23378fba522e74ea346037d824a3eaf9f6bd327463ec9f407801d

    • Size

      900KB

    • MD5

      198f415b24b28b8990a1f8f23d352150

    • SHA1

      4495cda6c0d58c6b63fc0d7a8140136a62b04acb

    • SHA256

      697e62397fc23378fba522e74ea346037d824a3eaf9f6bd327463ec9f407801d

    • SHA512

      f2408acb5bb6e8d521fdc0112f58d5ba9051cec8cde46c45771f95e476299c797537ae3d1185df2ddd0d6620d76740fc9ee0ee2f35386576936c2cb6031f4c0d

    • SSDEEP

      24576:/Wb6aXAxG3hB4LzNnAyXo/HrbszVjZGwcUhULRAB8s:9wxB4JARvrwVjwUhEmB8s

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks