Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    FiveM.zip

  • Size

    2.2MB

  • Sample

    230529-rpxgsscb89

  • MD5

    6df96b6a21311b9d7eb32e79c598cd16

  • SHA1

    a366a754f2574327b41668b07d4218d9d5648c9e

  • SHA256

    3be30b01b3113cb4c5a31329f20adbcc4b576081db2032fa08ebe8849f36d0b4

  • SHA512

    7b6d8a04af96d7ebdf80bbd555ab72feb8fcc5051f94b52a8f4dfd08af49d5fd8adb2087265993e3a7b6efa94748bc95f36a52f80051922aac46ab7bc95f8fd8

  • SSDEEP

    49152:bQaNFwgHzpImqyGs0kN0scY0yb/w0diJXV3OoTWUt7PSQ6fgDM:bZNinmqyI2NiJXV3OKLVSQwgDM

Score
7/10

Malware Config

Targets

    • Target

      FiveM.exe

    • Size

      4.9MB

    • MD5

      4a036dffd4eba55a9a5bdebd5cfa01b5

    • SHA1

      f3e232cd319f2dc310fd2816f388a87db354ae04

    • SHA256

      223789990716c446bd1175f4bc74ad01393d90014b1581b23c8b73bb265df78f

    • SHA512

      eab762da142332f0ac7bf75793ceb839c2607e8689090f44d832f7583502cb9964024b70a64d56cf8cddb2a0c7079aaf5dc903ab33657c6dfa2dc731a123879a

    • SSDEEP

      49152:pOjPWgEPD9u3+aM9toyPnDe8VjoitsVyNKUVOjhxwkhHC0u0iVJtfSJQiUzvgaQp:1Dlri8loPVlMRFSn/5rFXjPSm+m

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks