Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

Wall.bat

windows7-x64

Wall.bat

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Wall.bat

  • Size

    4KB

  • Sample

    230425-asktqshb8s

  • MD5

    5b0e787a10b96509bb38c60ed9dd530b

  • SHA1

    a3c370eb91992fc091b780de3f996b3f1bedc46f

  • SHA256

    b21f185108ba1b391c6149d6cc4ba1c5f127ce14c0bebd3e392c0b40ce189f32

  • SHA512

    9f080fcbb8ed2ddaae3abcda2c2455edd7ea102dacb8e1375a08f12bdaf05633117dff6ff18bcd080892328704106b8aafdaf1b201d57cf5f5a8c5be5b12b1c2

  • SSDEEP

    48:li/Xqm/7mZg2x3QEKrVRVRVjZ+0v6jfZI3zjjqMW1RCGPtvzNLV2uitw:lixjqprKG0vWfOjq111JV7p

Score
7/10
ransomware

Malware Config

Targets

    • Target

      Wall.bat

    • Size

      4KB

    • MD5

      5b0e787a10b96509bb38c60ed9dd530b

    • SHA1

      a3c370eb91992fc091b780de3f996b3f1bedc46f

    • SHA256

      b21f185108ba1b391c6149d6cc4ba1c5f127ce14c0bebd3e392c0b40ce189f32

    • SHA512

      9f080fcbb8ed2ddaae3abcda2c2455edd7ea102dacb8e1375a08f12bdaf05633117dff6ff18bcd080892328704106b8aafdaf1b201d57cf5f5a8c5be5b12b1c2

    • SSDEEP

      48:li/Xqm/7mZg2x3QEKrVRVRVjZ+0v6jfZI3zjjqMW1RCGPtvzNLV2uitw:lixjqprKG0vWfOjq111JV7p

    Score
    7/10
    ransomware

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks