Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Windows Ftp Update.exe

  • Size

    26KB

  • Sample

    230614-hgv5bsdh6w

  • MD5

    c73c55d7295479819ed072a0ad44e450

  • SHA1

    c0657f9ee90c57416a1ef44d9d55e80bc961d3ed

  • SHA256

    fa7edd0d0c5a367b18e127813ddcb0b73848408613b672117962f75e99fc2842

  • SHA512

    1bc51989f1eedaf4bd6341f39302d99c6bfad8ea86069dba46704254a1ffdd8e7b065345a76ce500f0a496e0b8adb1cdca8e5f45ead697d816cf0106e5f48ea8

  • SSDEEP

    768:llhJRlhe5+P4SkYybFOnN0Xu5otYcF6/Vc6K:ldhe4zkJbFONpE2Vcl

Score
7/10

Malware Config

Targets

    • Target

      Windows Ftp Update.exe

    • Size

      26KB

    • MD5

      c73c55d7295479819ed072a0ad44e450

    • SHA1

      c0657f9ee90c57416a1ef44d9d55e80bc961d3ed

    • SHA256

      fa7edd0d0c5a367b18e127813ddcb0b73848408613b672117962f75e99fc2842

    • SHA512

      1bc51989f1eedaf4bd6341f39302d99c6bfad8ea86069dba46704254a1ffdd8e7b065345a76ce500f0a496e0b8adb1cdca8e5f45ead697d816cf0106e5f48ea8

    • SSDEEP

      768:llhJRlhe5+P4SkYybFOnN0Xu5otYcF6/Vc6K:ldhe4zkJbFONpE2Vcl

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks