Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

wureset110...64.exe

windows7-x64

7

wureset110...64.exe

windows10-2004-x64

7

Resubmissions

24/03/2023, 23:19

230324-3a37kscb3s 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wureset11009_setup_winx64.exe

  • Size

    5.8MB

  • Sample

    230324-3a37kscb3s

  • MD5

    942eba7083937dfd97524f4274668623

  • SHA1

    8873d6e33f3b5411ab4a68e060cca58c59fd53de

  • SHA256

    024e0bdefa61866f785908b1f5d86c5bffc78bcbee0b355565277f52823119da

  • SHA512

    49a792a86c82ac2e91bfe13ee24224985819437b9217f2fb7a881b5a986aae4163ceb6db5f9fcbd45f22bb9289641f29ecafbb7ec7e67e3391a8067a1d7c639d

  • SSDEEP

    98304:YvyOFvaEewPn9K7a6Q34Z4wCeQHctSNh0kh:YvxSEewt6HZI

Score
7/10
discovery

Malware Config

Targets

    • Target

      wureset11009_setup_winx64.exe

    • Size

      5.8MB

    • MD5

      942eba7083937dfd97524f4274668623

    • SHA1

      8873d6e33f3b5411ab4a68e060cca58c59fd53de

    • SHA256

      024e0bdefa61866f785908b1f5d86c5bffc78bcbee0b355565277f52823119da

    • SHA512

      49a792a86c82ac2e91bfe13ee24224985819437b9217f2fb7a881b5a986aae4163ceb6db5f9fcbd45f22bb9289641f29ecafbb7ec7e67e3391a8067a1d7c639d

    • SSDEEP

      98304:YvyOFvaEewPn9K7a6Q34Z4wCeQHctSNh0kh:YvxSEewt6HZI

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks