Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04451999.exe

  • Size

    2KB

  • Sample

    230529-j9ll2aaf66

  • MD5

    594a86d0fa8711e48066b1852ad13ac6

  • SHA1

    35b840640e6a3c53a6ba0c6efa1a19a061f5c104

  • SHA256

    b49d777b48ec591859c9374a2a707b179cb3770b54d9dc03b5c7f3ae2f06b360

  • SHA512

    bc67e03c2a577c936c376b27cb141cb2f1e041a32dc4ebfa14c575289b3a15e5b27faec9e25f12caf9f00ada13b934c9adf348a2fef4d7202119f13880bf23ab

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

https://cdn.discordapp.com/attachments/952087079892975626/1108466607375786045/INVOICE_MT103.hta

Targets

    • Target

      04451999.exe

    • Size

      2KB

    • MD5

      594a86d0fa8711e48066b1852ad13ac6

    • SHA1

      35b840640e6a3c53a6ba0c6efa1a19a061f5c104

    • SHA256

      b49d777b48ec591859c9374a2a707b179cb3770b54d9dc03b5c7f3ae2f06b360

    • SHA512

      bc67e03c2a577c936c376b27cb141cb2f1e041a32dc4ebfa14c575289b3a15e5b27faec9e25f12caf9f00ada13b934c9adf348a2fef4d7202119f13880bf23ab

    Score
    10/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks