Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c407f9c7ee5c99_JC.exe

  • Size

    77KB

  • Sample

    230718-tctlgsbh68

  • MD5

    c407f9c7ee5c9926de39b56e38b6ca76

  • SHA1

    940298592a72590870211c0aaec5b2a054cd0214

  • SHA256

    98eef653d9953297c34b0e68fd438b31602421ffc807c0ec176fb6180ba5b1e4

  • SHA512

    cddb0a65b63ee2585e838a686bf28bcdbdf9a34ff151aa298cf5e1a1b4303171193566e7531a018836094f7b2802a8fb3d6db053a91ef6e9d2f0ba9bdb737789

  • SSDEEP

    1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOTdSWCP8:T6a+rdOOtEvwDpjNz

Score
7/10
upx

Malware Config

Targets

    • Target

      c407f9c7ee5c99_JC.exe

    • Size

      77KB

    • MD5

      c407f9c7ee5c9926de39b56e38b6ca76

    • SHA1

      940298592a72590870211c0aaec5b2a054cd0214

    • SHA256

      98eef653d9953297c34b0e68fd438b31602421ffc807c0ec176fb6180ba5b1e4

    • SHA512

      cddb0a65b63ee2585e838a686bf28bcdbdf9a34ff151aa298cf5e1a1b4303171193566e7531a018836094f7b2802a8fb3d6db053a91ef6e9d2f0ba9bdb737789

    • SSDEEP

      1536:T6QFElP6n+gxmddpMOtEvwDpjwaxTNUOTdSWCP8:T6a+rdOOtEvwDpjNz

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v6

Tasks