Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    loaderx.exe

  • Size

    2.8MB

  • Sample

    230507-rspw5aeh87

  • MD5

    0ad824c9898657a25c9fc6d2239764d8

  • SHA1

    491739333a928871bd1ec9c86f46116ad9ca1bdc

  • SHA256

    159376c3144f2abccd38d80c5cd69d18cd45232ae807b64292f213634f2087c1

  • SHA512

    8b0f2844eef456a3bf1a99aaa30f7670dfd2a9c94990f2a73695e10d4345f6a556f69b93b1873075bda6d8bc4f6f3d3a6d08f6c8ef8e51f3a185584bc4477a0e

  • SSDEEP

    49152:hKQ9qcpXi6MSrzysY4bpzrLgAA8NRJFRgT/g:hKs

Score
8/10

Malware Config

Targets

    • Target

      loaderx.exe

    • Size

      2.8MB

    • MD5

      0ad824c9898657a25c9fc6d2239764d8

    • SHA1

      491739333a928871bd1ec9c86f46116ad9ca1bdc

    • SHA256

      159376c3144f2abccd38d80c5cd69d18cd45232ae807b64292f213634f2087c1

    • SHA512

      8b0f2844eef456a3bf1a99aaa30f7670dfd2a9c94990f2a73695e10d4345f6a556f69b93b1873075bda6d8bc4f6f3d3a6d08f6c8ef8e51f3a185584bc4477a0e

    • SSDEEP

      49152:hKQ9qcpXi6MSrzysY4bpzrLgAA8NRJFRgT/g:hKs

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks