Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

79a4615df5...9d.exe

windows7-x64

7

79a4615df5...9d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    79a4615df5fc5115056d6cd748d70490cf81322629b753ad26864e4a29b75e9d

  • Size

    2.3MB

  • Sample

    230606-wz1dnafe6w

  • MD5

    2572c890776f92894c0e45f971de9f0b

  • SHA1

    cc93bea092bcd70d4fe0b6d3d283f1fbea847bde

  • SHA256

    79a4615df5fc5115056d6cd748d70490cf81322629b753ad26864e4a29b75e9d

  • SHA512

    f18798d75fc90efb671eec96fb821d2c52ab1e8a96ee053bd593ab4507d6bc2cc61cbc88c84b2f8081e501a02cff17dc5eb2239d02be4b63883db12bc9245840

  • SSDEEP

    49152:YrS/CzXaWG55+ovfGYqEAf8RlPMJlio68D:YrYCraWG55+ovfGYqEAf8RlPlo68

Score
7/10

Malware Config

Targets

    • Target

      79a4615df5fc5115056d6cd748d70490cf81322629b753ad26864e4a29b75e9d

    • Size

      2.3MB

    • MD5

      2572c890776f92894c0e45f971de9f0b

    • SHA1

      cc93bea092bcd70d4fe0b6d3d283f1fbea847bde

    • SHA256

      79a4615df5fc5115056d6cd748d70490cf81322629b753ad26864e4a29b75e9d

    • SHA512

      f18798d75fc90efb671eec96fb821d2c52ab1e8a96ee053bd593ab4507d6bc2cc61cbc88c84b2f8081e501a02cff17dc5eb2239d02be4b63883db12bc9245840

    • SSDEEP

      49152:YrS/CzXaWG55+ovfGYqEAf8RlPMJlio68D:YrYCraWG55+ovfGYqEAf8RlPlo68

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks