Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    qwd.exe

  • Size

    28KB

  • Sample

    230601-y1sfjsgg61

  • MD5

    6062b6931cb4fbe864d2a1953604db94

  • SHA1

    26778d2862ff3f13b614f10c66987346423f6339

  • SHA256

    c7a87592a9864379456a3b0f3c9b2241f77062f49210f1b146fbb83da3bd5a35

  • SHA512

    b13ef1c7069e1c6d67bbad256fc7dc622d0d03d34b56db25571f287b4366637a8b04be2ec55124d2d65449193e68e49522556c10c0a5f3153f9168b119ebbcf6

  • SSDEEP

    768:fRGuY2P0Vo6r7SiAwyrMRjbHEXKVYb/Lg6lrRpaXinbcuyD7Us:pPcVo6r7S/rabHEKqb/LXRpvnouy8s

Score
7/10
upx

Malware Config

Targets

    • Target

      qwd.exe

    • Size

      28KB

    • MD5

      6062b6931cb4fbe864d2a1953604db94

    • SHA1

      26778d2862ff3f13b614f10c66987346423f6339

    • SHA256

      c7a87592a9864379456a3b0f3c9b2241f77062f49210f1b146fbb83da3bd5a35

    • SHA512

      b13ef1c7069e1c6d67bbad256fc7dc622d0d03d34b56db25571f287b4366637a8b04be2ec55124d2d65449193e68e49522556c10c0a5f3153f9168b119ebbcf6

    • SSDEEP

      768:fRGuY2P0Vo6r7SiAwyrMRjbHEXKVYb/Lg6lrRpaXinbcuyD7Us:pPcVo6r7S/rabHEKqb/LXRpvnouy8s

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v6

Tasks