Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

43843_8439...98.lnk

windows7-x64

8

43843_8439...98.lnk

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c9a106ff0bd1682a3ecf804cd60f89099f057b7

  • Size

    129KB

  • Sample

    230202-qwaqyahe72

  • MD5

    5887281fa0b0a5fe48b3d740a5b0ec36

  • SHA1

    9c9a106ff0bd1682a3ecf804cd60f89099f057b7

  • SHA256

    fca13c961e8ca0c84328b26d342b365b8867b250a1c8bc4688ce35e993b9864e

  • SHA512

    84e693b559355458dbb4a0c7a04e2f624abcb8e135f7db93bbb90b03e7d12e9364702bcf311feb4fed38475e7c8735e5eba8034e7d5fb4e9eeec754466d52080

  • SSDEEP

    3072:H4m5BsfSPVeou7mwV4jUs8Nu+GEodNn6/f9DaiSGeQnHkJ6/:YwssVUNV28NTGEoEYbGXHM6/

Score
8/10

Malware Config

Targets

    • Target

      43843_8439_8329098.lnk

    • Size

      130KB

    • MD5

      2fcb95c29131b2bdb9f864f492a3bcd1

    • SHA1

      7ffa77710ae6a95b3759643852a5a829c550a36e

    • SHA256

      36a4e3cebb2ed11077cca219e6033a31a60fc8924ed48b79e216d4ceefcc08f5

    • SHA512

      a527d90b15ce7556ae167aba16cfbda8d213b87ec8d2e095ba57060ae7af3315de7bfcbbaddca8e7ad4ff8c7f6a40f5f9e3b8bdea25292a24f2d31740368baa7

    • SSDEEP

      3072:EE+n8y1Bzt+mwV4jUs8Nu+GEodNn6/f1DaiSGeQnHkJ6U:EE+nPvxwV28NTGEoEAbGXHM6U

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks