Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    00e8a480ba872cexe_JC.exe

  • Size

    139KB

  • Sample

    230713-v1l2zshf29

  • MD5

    00e8a480ba872caa4bbc46bee1502a17

  • SHA1

    a1159c347931bccd9e77790002544b281a0c4e26

  • SHA256

    caff90d68584f9ef6374b119987d7cc396d45ba675601c5ed239d6eb108a2132

  • SHA512

    e5a37cf2466737fd98ec2c05a9b56d9055d6db5f70c652f102817e99945dfb6578ea9409402f960f3ebdb70cff43932bd939242d808c0a9c6326959e5992c761

  • SSDEEP

    1536:z6QFElP6n+gKmddpMOtEvwDpj3GYQbN/PKwNgp699G1mE:z6a+CdOOtEvwDpjczu

Score
7/10
upx

Malware Config

Targets

    • Target

      00e8a480ba872cexe_JC.exe

    • Size

      139KB

    • MD5

      00e8a480ba872caa4bbc46bee1502a17

    • SHA1

      a1159c347931bccd9e77790002544b281a0c4e26

    • SHA256

      caff90d68584f9ef6374b119987d7cc396d45ba675601c5ed239d6eb108a2132

    • SHA512

      e5a37cf2466737fd98ec2c05a9b56d9055d6db5f70c652f102817e99945dfb6578ea9409402f960f3ebdb70cff43932bd939242d808c0a9c6326959e5992c761

    • SSDEEP

      1536:z6QFElP6n+gKmddpMOtEvwDpj3GYQbN/PKwNgp699G1mE:z6a+CdOOtEvwDpjczu

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v6

Tasks