Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8cce40741f5cf8a9e96c1a2b3998410356c492d8ba97b99ed9a7dcfcbaf58c7e.exe.zip

  • Size

    317.7MB

  • Sample

    231002-nwg4xabd97

  • MD5

    85bfcba23288640721642ab694705254

  • SHA1

    2162abad4ad6764c698fa117d5f7385684573c35

  • SHA256

    350faab1162e3b87132f0a525c2c53c86f3521bb8b8e7e04eeb5b5d48dca17fe

  • SHA512

    65313f13b766fad803f03781ad5f26f53f8268d2ec3974df94473a977586b5b93f6dcb111b4bee18f23ae7bf98e669ff22a5962517d5a023b90ea4d41e6ff381

  • SSDEEP

    6291456:cRuorcQxvoPetGb7xmnRahYX7vegWz28OEk0YZuox11mOMhrlZd9Q:arcSAPTb7AkhYX7UXhk3uaLmhrlP9Q

Score
8/10

Malware Config

Targets

    • Target

      8cce40741f5cf8a9e96c1a2b3998410356c492d8ba97b99ed9a7dcfcbaf58c7e.exe

    • Size

      318.0MB

    • MD5

      8c9ae9f0a0f5055e33b40161a511830e

    • SHA1

      bfb024240c587bf3c355ba4cbe512e7490f3fcaf

    • SHA256

      18fe7975769432565e0990817d3fd46a1a28fb14672386504254037905a7217f

    • SHA512

      f8ec9acc95801f44da2e6cce7a23d805d7cca015a69217d6a105719d853e8b0fe3cee7121f4d71df3bc103d65413a94cf91d1fc3f4fe58d380b979e5363a69a5

    • SSDEEP

      6291456:IMShiZwO/1w7g2Daf4zAiV2TRmjiqzINgNRdO+eRedlIiuijyWTtJirh:qhif1xWXUqVzNRE7Re5Zch

    Score
    8/10
    • Blocklisted process makes network request

    • Stops running service(s)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks