Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

CML.exe

windows7-x64

7

CML.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    CML.exe

  • Size

    1.3MB

  • Sample

    230924-cjw7hsde73

  • MD5

    4bb13098023c451a7f7b7f0288cbf011

  • SHA1

    cbd2673a083af54bed15e922e9eb293ef0759d39

  • SHA256

    e7d3eb7704c4e5b67d45e69b7fcac53d73b30b7a41f23966cf1d1a679e4d7d80

  • SHA512

    cc929b16367c2ee662f6ee6876dfa6e0fc035733ff79011ec85197f722a0b5b809fed7f0a8dad23ab118517c5f92690e2d2b82fb6cbe6384bd9ddf58c0f141f3

  • SSDEEP

    24576:4XssSn7Fujf+tboxjt/KMYgqCmvmHHNuHMMYBY/BWjmYk5lYmkAXpbgZ:4csOZptboxjt/pq1vmnNuH+BY/B2mlqK

Score
7/10
discovery

Malware Config

Targets

    • Target

      CML.exe

    • Size

      1.3MB

    • MD5

      4bb13098023c451a7f7b7f0288cbf011

    • SHA1

      cbd2673a083af54bed15e922e9eb293ef0759d39

    • SHA256

      e7d3eb7704c4e5b67d45e69b7fcac53d73b30b7a41f23966cf1d1a679e4d7d80

    • SHA512

      cc929b16367c2ee662f6ee6876dfa6e0fc035733ff79011ec85197f722a0b5b809fed7f0a8dad23ab118517c5f92690e2d2b82fb6cbe6384bd9ddf58c0f141f3

    • SSDEEP

      24576:4XssSn7Fujf+tboxjt/KMYgqCmvmHHNuHMMYBY/BWjmYk5lYmkAXpbgZ:4csOZptboxjt/pq1vmnNuH+BY/B2mlqK

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops desktop.ini file(s)

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks