Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    RBX Alt Manager.exe

  • Size

    3.8MB

  • Sample

    230112-wcxz1scf81

  • MD5

    3088950d8671e650f0feba02fba8a9e0

  • SHA1

    920ddfb2ceeb97dee4b4a1650c717a83c02e9d9b

  • SHA256

    fe259ff7425d276f317072153ec9f5b87eede298643578b84428c402a162502f

  • SHA512

    9cd9ce262821a8d074ca5153e7334bccc8a5475d6a062830897d167344af71215885b215ef9f0d4275f2ffdbd97451f9519d292fa0cd57a7d737f09d4ea41b54

  • SSDEEP

    98304:cV2bT1QqxBpJzyaqUOJp0IyjI7W0FWUc:c+QqxBOlUOJp0tk7bWU

Score
8/10

Malware Config

Targets

    • Target

      RBX Alt Manager.exe

    • Size

      3.8MB

    • MD5

      3088950d8671e650f0feba02fba8a9e0

    • SHA1

      920ddfb2ceeb97dee4b4a1650c717a83c02e9d9b

    • SHA256

      fe259ff7425d276f317072153ec9f5b87eede298643578b84428c402a162502f

    • SHA512

      9cd9ce262821a8d074ca5153e7334bccc8a5475d6a062830897d167344af71215885b215ef9f0d4275f2ffdbd97451f9519d292fa0cd57a7d737f09d4ea41b54

    • SSDEEP

      98304:cV2bT1QqxBpJzyaqUOJp0IyjI7W0FWUc:c+QqxBOlUOJp0tk7bWU

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Detected potential entity reuse from brand microsoft.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks