Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

60a2fff6f7...f3.exe

windows7-x64

7

60a2fff6f7...f3.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60a2fff6f79d69cbacb85630851eaf067e9ab630f32fc5e9d04069676576acf3

  • Size

    2.8MB

  • Sample

    231010-wlj5hsfc5t

  • MD5

    316b81a4849aefe5419963584ea683e6

  • SHA1

    22a62c1708bbd20238c9b46ffad9cc7f96349eec

  • SHA256

    60a2fff6f79d69cbacb85630851eaf067e9ab630f32fc5e9d04069676576acf3

  • SHA512

    bdd7322f56e5cebd164eed6cd6e82ea4ac6a30d74fa429d1b95d362b3aecf05ae58f51ce38e7d6860a537ed7dba094e10864d490b545a3444a6c7559fc7360ef

  • SSDEEP

    49152:uYweyTXjy6liXWMgUVz7Mny53NHuoINYN0RxvYXHK9/CmK/Qqat57/GB:C26liXWMgUVhPU7WKsmWat5iB

Score
7/10

Malware Config

Targets

    • Target

      60a2fff6f79d69cbacb85630851eaf067e9ab630f32fc5e9d04069676576acf3

    • Size

      2.8MB

    • MD5

      316b81a4849aefe5419963584ea683e6

    • SHA1

      22a62c1708bbd20238c9b46ffad9cc7f96349eec

    • SHA256

      60a2fff6f79d69cbacb85630851eaf067e9ab630f32fc5e9d04069676576acf3

    • SHA512

      bdd7322f56e5cebd164eed6cd6e82ea4ac6a30d74fa429d1b95d362b3aecf05ae58f51ce38e7d6860a537ed7dba094e10864d490b545a3444a6c7559fc7360ef

    • SSDEEP

      49152:uYweyTXjy6liXWMgUVz7Mny53NHuoINYN0RxvYXHK9/CmK/Qqat57/GB:C26liXWMgUVhPU7WKsmWat5iB

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks