Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

04/05/2023, 11:29

230504-nlv8sadg6z 7

04/05/2023, 09:42

230504-lps7gsbd42 7

General

  • Target

    10346047040.zip

  • Size

    697B

  • Sample

    230504-nlv8sadg6z

  • MD5

    575c44581b7fa69d7df0e2acc6fc99f4

  • SHA1

    d07d7759572de2a14d95255aec340fd802ef37a9

  • SHA256

    efb698c07f2e043c03aa5661a6cbeb2d6b2889d295d857ccd0679f5cdd3ca678

  • SHA512

    d6d82f3ec1330078ab620620f8e9ffe5738c8e9039306848aba3d98872d8bf7f1621e6c4cc089abb9689623385d21ca1f430ba06a9c5577da294bd904dbcc03c

Score
7/10

Malware Config

Targets

    • Target

      253c19f1078fd5ec04602276f8f1ca1aab6bd4349b75e4052cdbf78cb1bd9767

    • Size

      927B

    • MD5

      984572d249eddd2e08c4575ab0b26eb7

    • SHA1

      f031a105ca244c8a4ec91aefedbecedd79651361

    • SHA256

      253c19f1078fd5ec04602276f8f1ca1aab6bd4349b75e4052cdbf78cb1bd9767

    • SHA512

      8e2976de35f5eb0695848d6ec044a192e0902ff976eab08221b6e11d156669237fc717396c0c1224803c1a5146a002ce98931cb43816173b1c425163fb0731ba

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks