Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Fact_digit...sj.exe

windows7-x64

Fact_digit...sj.exe

windows10-2004-x64

~~~~~~~~~~...KF.dll

windows7-x64

1

~~~~~~~~~~...KF.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ID-FactIVKAZAKFCECGFDVvorbk.zip

  • Size

    3.8MB

  • Sample

    230615-ydssssba25

  • MD5

    873b621d23ad7548e01e4273a05d3b75

  • SHA1

    c33d62e67e99756748f20d3f84d0f1e369c29d9e

  • SHA256

    26658fb8ebd497e5e85a5b6fd8668cc61cde8b171989fa64dc6b358dedc028a0

  • SHA512

    5b4d4edbd7ef1e1e0ffd23387c94ef9442e6568828ad95fc23532dda3f7ad77eb489a12960b77436e6dce79781219e3549fca58d73c9b4fdd57746e39f558258

  • SSDEEP

    98304:C5izu1xjksCiCCX0MCQspiF6n2LEXPaCfZPU/5xXH452GC6:CdnjkDoN0iF6nFXPa825+5g6

Score
7/10
persistence

Malware Config

Targets

    • Target

      Fact_digital_SerieA3548510694BSMULRBDPLatksj.exe

    • Size

      248.3MB

    • MD5

      4bc1ec0fe883af3a84a07a383f51695e

    • SHA1

      86092d7158be3000924f82911de5edb19de8141c

    • SHA256

      e07dd6c0c929cc8c6fb1c379e272a458776c5bbb2a3963c0baf5b2a71b53d079

    • SHA512

      85a64eb4cbe7c387c14b7e3951a8428ecb6e8516fdacdc0b2bfaecf30a5d91b963db23fd6fdd93c630413ab1896e1befa548c8f2a652025843eb22e7ae18d3e4

    • SSDEEP

      98304:qfIAyucjzAPt/4nFtbO8ZXaMxjR3zm737wOOAsGywW1UrttJjUI+:oIAy70/KXaMhxM7TXASttJo

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

    • Target

      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~A23217FMPKF.xml

    • Size

      16KB

    • MD5

      8e27998497215aa04caf5470e6cb7093

    • SHA1

      3d30d2d33b9df4656d4d0a58b00b0c8f3a6f4f75

    • SHA256

      0604388f107d1ed9abbb13912e5cdc2f9a2da8d0e528fbb4546c23b2f08c6f15

    • SHA512

      7ff947b92970f7af8862017ae6cc2e6acf6efa1c1e2ab6d1ad6e1ede7aa3f7c496f44792660dbd284b507598116f290940df431abb65baa27591a08177facdf8

    • SSDEEP

      192:nOoZ9Nyby2sE9jBF6IYiYF84+noPOJB3xZndj73oqp4f2br5hRJz:n59Nyb8E9VF6IYiTPxxZdnoqeChRd

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks