Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

Install-Go...ta.exe

windows7-x64

8

Install-Go...ta.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Install-GooglePlayGames-Beta.exe

  • Size

    1.4MB

  • Sample

    230304-2f14qsed9x

  • MD5

    cff3e4ca3a4fd1b9960b777be88b7049

  • SHA1

    ee6a9f1a8124fa7aced80a8aeb4c468803efa793

  • SHA256

    fbb0a0b83c6ff2697af362e51a676074b95776f55d4393023520396a38d1cb42

  • SHA512

    143df6366f7613b4ed23c619de9dea9a151820d0a72f5a4c86dbc6a2aa233dbf7ed352cd316c251eff1cb9cffcc6e536b71c97972ff5e5c28741b775233f7b8c

  • SSDEEP

    24576:Jw8KjKjGFygcc23L1/NVOmOSGb6E3ecS4fzrjxJh9UZXlpbPvC7xtYUrEmFlo+LT:PKjKWQc2b1FVgbjrjxPe1pbPSQm1FloS

Score
8/10
persistence

Malware Config

Targets

    • Target

      Install-GooglePlayGames-Beta.exe

    • Size

      1.4MB

    • MD5

      cff3e4ca3a4fd1b9960b777be88b7049

    • SHA1

      ee6a9f1a8124fa7aced80a8aeb4c468803efa793

    • SHA256

      fbb0a0b83c6ff2697af362e51a676074b95776f55d4393023520396a38d1cb42

    • SHA512

      143df6366f7613b4ed23c619de9dea9a151820d0a72f5a4c86dbc6a2aa233dbf7ed352cd316c251eff1cb9cffcc6e536b71c97972ff5e5c28741b775233f7b8c

    • SSDEEP

      24576:Jw8KjKjGFygcc23L1/NVOmOSGb6E3ecS4fzrjxJh9UZXlpbPvC7xtYUrEmFlo+LT:PKjKWQc2b1FVgbjrjxPe1pbPSQm1FloS

    Score
    8/10
    persistence

    • Downloads MZ/PE file

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks