Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

a8c0a42253...b1.exe

windows7-x64

7

a8c0a42253...b1.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5e792b28f60d355d210294f26847089f.bin

  • Size

    301KB

  • Sample

    230512-bxyf3ade5y

  • MD5

    350258e80663b91c29d0af6348dc1538

  • SHA1

    6b4aeccd723b74710e55b1bd2835854f3423fb0c

  • SHA256

    74ffe5624b47e427d461a0b9e4a01d29b2d0090c346775d02e8d431897c97294

  • SHA512

    25da9519f8142f680eb79f522b30871b7d8437477b51ebfc9df8f359d88aa3a770fc1cba10b96a29047ab608880c9d8dd5025a2793c251c6e3fdd9e79891a7fa

  • SSDEEP

    6144:ZHu1E8PFEkIJke0fiCGmSpcTSTJo7Gknnkne+aJ5zyfLIlyscAz:ZHu1fFxIJoLbSaTSNo7GHnIyjIlZcAz

Score
7/10

Malware Config

Targets

    • Target

      a8c0a42253b268618bf63ac631fe304c51014e38b8fdb2e2012cdb2b4a9861b1.exe

    • Size

      445KB

    • MD5

      5e792b28f60d355d210294f26847089f

    • SHA1

      50b7c5b76cf662d52896a79860a585cc18e8cc87

    • SHA256

      a8c0a42253b268618bf63ac631fe304c51014e38b8fdb2e2012cdb2b4a9861b1

    • SHA512

      d79993f883670ec5b1a12de306ebf3c41ab3f2bfd087a29a48f756f803dfdce8c51eb1e9d5329ec7b9151361023432792994caed8a7937d602f1c689ac55c402

    • SSDEEP

      6144:I1XQakQK7FxbIBMPrIx2s627tbPdQDYn3DYj1A+I3Xn9zIPEjj1PmauqtHpp:uXQaYbBo2mBPdQDYzYj1fkndIPWT

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks