Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

6ca95ecd56...ae.exe

windows7-x64

7

6ca95ecd56...ae.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6ca95ecd56408d1e44cb18935578e6d8d7f407e37953c31136f73afa80c063ae

  • Size

    1.1MB

  • Sample

    231001-mhldqsbe54

  • MD5

    e4984942dc13a6fc681001c5933a3963

  • SHA1

    b8c1f6d36cf3887c48faa810561e6ed63ac14893

  • SHA256

    6ca95ecd56408d1e44cb18935578e6d8d7f407e37953c31136f73afa80c063ae

  • SHA512

    edc6899a9e768f98aeeee3c15fe7d60f37afc584f610e5a63f07f8201411da6c88afae84410639565b9bde73e4fe49791ecf3ad25384deaaecfe0e4f4f19ee1a

  • SSDEEP

    24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRh:g5ApamAUAQ/lG4lBmFAvZh

Score
7/10

Malware Config

Targets

    • Target

      6ca95ecd56408d1e44cb18935578e6d8d7f407e37953c31136f73afa80c063ae

    • Size

      1.1MB

    • MD5

      e4984942dc13a6fc681001c5933a3963

    • SHA1

      b8c1f6d36cf3887c48faa810561e6ed63ac14893

    • SHA256

      6ca95ecd56408d1e44cb18935578e6d8d7f407e37953c31136f73afa80c063ae

    • SHA512

      edc6899a9e768f98aeeee3c15fe7d60f37afc584f610e5a63f07f8201411da6c88afae84410639565b9bde73e4fe49791ecf3ad25384deaaecfe0e4f4f19ee1a

    • SSDEEP

      24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRh:g5ApamAUAQ/lG4lBmFAvZh

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks