Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    51a709bfee4438611f3afbe3fd4a9257.exe

  • Size

    580KB

  • Sample

    230103-rf46aabf34

  • MD5

    51a709bfee4438611f3afbe3fd4a9257

  • SHA1

    7352a87e19c7b949643811d50b0a6f0e170cf6ac

  • SHA256

    1cf4ca22e9fae2f14ec510910ca68dbe2bdad715af613b391bcb53414ddeb19f

  • SHA512

    e5a46cbd165dc71893740d043816f7802dfb5126f2527eadb6372921c14c5477623da493f83da08b0f075ed630fb8ac447358d2590a179bb9ff530b840c33b16

  • SSDEEP

    12288:PKqjWycOHr+5n1UxrSAHAhsxwpdBLIartbDA+VI2CZQi6sFIMyYOGqa4c:PKgyTmQyaTBN5k+VI2Cx6

Score
8/10

Malware Config

Targets

    • Target

      51a709bfee4438611f3afbe3fd4a9257.exe

    • Size

      580KB

    • MD5

      51a709bfee4438611f3afbe3fd4a9257

    • SHA1

      7352a87e19c7b949643811d50b0a6f0e170cf6ac

    • SHA256

      1cf4ca22e9fae2f14ec510910ca68dbe2bdad715af613b391bcb53414ddeb19f

    • SHA512

      e5a46cbd165dc71893740d043816f7802dfb5126f2527eadb6372921c14c5477623da493f83da08b0f075ed630fb8ac447358d2590a179bb9ff530b840c33b16

    • SSDEEP

      12288:PKqjWycOHr+5n1UxrSAHAhsxwpdBLIartbDA+VI2CZQi6sFIMyYOGqa4c:PKgyTmQyaTBN5k+VI2Cx6

    Score
    8/10
    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks