Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

3ea11f515e...47e.js

windows7-x64

10

3ea11f515e...47e.js

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bdbc96baa80959b9567644cfd9cfa108.bin

  • Size

    25KB

  • Sample

    230325-ca7xnacf7s

  • MD5

    fee125be85dd59f64dc2384c0d6c674b

  • SHA1

    946de62421e7f98b8e97d6ef9fbb18ec782a5c2b

  • SHA256

    2509f0df15b1caab70d2f0a55287a51419b158afbe4743e6a2de767af2af96d0

  • SHA512

    749bcdabc0d747edd7b1cd456e8c9e74d6690403b431b2116ae03a0c0b7f4d866f0239b125e1a0075a74235bea50778f3fe1ecf1cadf1f4c692f629a2f94b635

  • SSDEEP

    768:jBQkTCOU1OsrQgxjtyFjQNKX6Tj1Lm/7xZiOvt8:mkTbgOsh8GNKX6TZLm/bvy

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://103.214.71.131/gdg77dzSUN7N.dat
exe.dropper

http://198.44.140.75/ZDaZZLNJq.dat
exe.dropper

http://87.236.146.53/mSVe5fds.dat
exe.dropper

http://154.7.253.203/Vodubu.dat
exe.dropper

http://137.74.39.237/LM0g9Nw.dat
exe.dropper

http://139.180.172.203/ajyMC.dat

Targets

    • Target

      3ea11f515eb42ed351b3e53855097b35dcf00a9faf9fd868299b71fb4e34847e.js

    • Size

      76KB

    • MD5

      bdbc96baa80959b9567644cfd9cfa108

    • SHA1

      74454032b37ae698615dc3db4d7f4eb47a9aa596

    • SHA256

      3ea11f515eb42ed351b3e53855097b35dcf00a9faf9fd868299b71fb4e34847e

    • SHA512

      b6c876b7304b8467f46402e449b7951719844d73d18c9f5b06be279f4d26a7c2ff796dc5810158cf771badacf3a2b63689b626b3989604c422280bf718fdcfe4

    • SSDEEP

      1536:+GEcysfmIvfU3FGXpF266XPOBgtEc5zOdqBHcnyFfIruavQGWMaMfqRwqwcIkisb:+QysfmIvfU3FGXpF266XPOBgtEc5zOde

    Score
    10/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks