Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Specification.gz

  • Size

    281KB

  • Sample

    230214-nhfnxsch78

  • MD5

    96aaff34c158c39f8a9d7eb07fd773ac

  • SHA1

    0c090dafedc62799a830b546fb03575da82aca6f

  • SHA256

    024acc542d965f6bb037356c877b8e544055068d06ac4f5f81a00274e5964c4e

  • SHA512

    5f277cf9dc029015e28f42eccdb3b31575a761fcc8f2c2d9b785a841398f31ace4e657ea487da92a6c93c7984857cd58b360803d71041ec070c6abf7835f7923

  • SSDEEP

    6144:xWAZXMDkB5Z7E+gf7g0FNb6qmz5n87vjV3GQ5QqPOp8y26A:XZcDk5gDc0FYqqV8B3GQ5QqPOpO6A

Score
7/10

Malware Config

Targets

    • Target

      Specification.exe

    • Size

      295KB

    • MD5

      6c4166241e9dd7e55249cf4d9dedba3a

    • SHA1

      a052f58f9a348cf693d80c6831dfc885baec23ef

    • SHA256

      2cbadf3f08bde65e99a75e12eb5a7eba6290bb6159a9850001b5a0f90b289c0e

    • SHA512

      4fe962dcaf993fc39cb9538d05a0433f968ad642c96df7f38aac0051afd2bbf210b306dc4b838673c9ad65dcdde42f724e183ee2cc6e75afd983b78eda5d23b7

    • SSDEEP

      6144:PYa69oq/ZRMDmB5n7E+gf7U0FNbWE+z9T87vjV3oQ5eqP+p8c26M:PYfo8ZODmHgbo0FgEiJ8B3oQ5eqP+pKN

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks