Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

stage1_cleaned.vbs

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    stage1_cleaned.vbs

  • Size

    44.8MB

  • Sample

    230522-jzeqqseh94

  • MD5

    21e08177e5718a4483232b04a08be251

  • SHA1

    6f0abbc5ba20b8458443532c87761a90f9651666

  • SHA256

    81d37d383d7965fa6114fc95efa733b4d35db1903bc007045d7e4314511c449c

  • SHA512

    41a12835b23bc7631550026a4aa6a6ced25c74f874bbb80b9023b0e2b591f88b2fae620e329c3f742303b81ae1abf921d2cd55884d2f71b40d5d5ccade90cd95

  • SSDEEP

    786432:/gLgLgLgrgLgLgLgLgLgOgLgLgLgLgLgLgLgLgLgtgLgLgLglgLgLgLgLgLgLgLI:u

Score
8/10

Malware Config

Targets

    • Target

      stage1_cleaned.vbs

    • Size

      44.8MB

    • MD5

      21e08177e5718a4483232b04a08be251

    • SHA1

      6f0abbc5ba20b8458443532c87761a90f9651666

    • SHA256

      81d37d383d7965fa6114fc95efa733b4d35db1903bc007045d7e4314511c449c

    • SHA512

      41a12835b23bc7631550026a4aa6a6ced25c74f874bbb80b9023b0e2b591f88b2fae620e329c3f742303b81ae1abf921d2cd55884d2f71b40d5d5ccade90cd95

    • SSDEEP

      786432:/gLgLgLgrgLgLgLgLgLgOgLgLgLgLgLgLgLgLgLgtgLgLgLglgLgLgLgLgLgLgLI:u

    Score
    8/10

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks