Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    47823c1f4f981be1c7982ab0a423beae.bin

  • Size

    19KB

  • Sample

    230322-bpwmhaga8y

  • MD5

    43b78bbfc2e717edac24c9849d534ed6

  • SHA1

    51fea70acc9c1ad0bc304b98ddff622a1bf4b178

  • SHA256

    d55b1f5949a27adc02b2d17a45ba32c1658453ec7ab05c31f9b781c392038c97

  • SHA512

    650a2eb7b27bd73fc739f111564de75295716e5c37c277a0aab242ad3f315310394d541cd24bd3c4b4c5ca1fcb3b3c31f0a28b19cfbb8948f1d2f3ebe14ce6ea

  • SSDEEP

    384:1A/HkLEDKQ+X7lCkXR2OJP9ToBwD4jvYTJZgQESA2iPMdvKZgIqoxq:1A/ELEDKJJdB2O77EjvkbhLikdvOxqoQ

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://getcash2surveys.com/0HFE0G/B0pO8q

exe.dropper

https://kingzunlimited.com/VvAmv/oCbHYAy0eo

exe.dropper

https://odwazig.nl/xNV7x/skdz8v

exe.dropper

https://onestopsilkscreeners.ca/o6g4bt1/mAbPqVmip

exe.dropper

https://smeolbd.com/ntaUX/9dhOa9

exe.dropper

https://canadianused.com/euSgOJA/l0VcI3

exe.dropper

https://discountlandllc.com/uUbH/rzrp6AIe

exe.dropper

https://sobanaze.com/cJn7i/GNp24jZRl6T

Targets

    • Target

      726b21c627f3b46ffbbfb76cc182e16461afe83ab062403f5e9d491cc58bfba5.js

    • Size

      56KB

    • MD5

      47823c1f4f981be1c7982ab0a423beae

    • SHA1

      80e0582d0e996c70e0971f690bfece18399d55cc

    • SHA256

      726b21c627f3b46ffbbfb76cc182e16461afe83ab062403f5e9d491cc58bfba5

    • SHA512

      82d354af54d2ea828793492318e3a7556f0979c9128aad51f569ca54394b63c232b91ba8731ae39fe52033a1e5085247e28181d348337b98b4077dd96e9f77ad

    • SSDEEP

      1536:pL/Zdr8m3FU83O5VWxWPapLDqkDG8Gzc2h9NJQ2vQYWwrr+zY:pL/ZeS8SlnSPQ2vxW+d

    Score
    10/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks