Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    SecuriteInfo.com.Win32.InjectorX-gen.12287.9454

  • Size

    950KB

  • Sample

    231012-s25jlsbc72

  • MD5

    97a2f66c3caeceecd74b6c5b919367c1

  • SHA1

    4d716b5153860f1b721b937ad33c1ded7f38d8e7

  • SHA256

    ed57c220f4f3bae36c7116e0997505b04521d9b365879387772a5bd1edb097a5

  • SHA512

    08c819d31ee8e835af71c2304e55e5cf7b057945e42491b8b17ebc06e60ed63a2f7941a9a75e273242a64b544e8268ce02c1598bddb508757596b91ad8f248a1

  • SSDEEP

    12288:IXi/f3Am/sLt9cXE/NfYKDPIfGYX4PpbpFgIk5GEpv:yi3AxHcU/ZwBQbpFgI6GE

Score
7/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win32.InjectorX-gen.12287.9454

    • Size

      950KB

    • MD5

      97a2f66c3caeceecd74b6c5b919367c1

    • SHA1

      4d716b5153860f1b721b937ad33c1ded7f38d8e7

    • SHA256

      ed57c220f4f3bae36c7116e0997505b04521d9b365879387772a5bd1edb097a5

    • SHA512

      08c819d31ee8e835af71c2304e55e5cf7b057945e42491b8b17ebc06e60ed63a2f7941a9a75e273242a64b544e8268ce02c1598bddb508757596b91ad8f248a1

    • SSDEEP

      12288:IXi/f3Am/sLt9cXE/NfYKDPIfGYX4PpbpFgIk5GEpv:yi3AxHcU/ZwBQbpFgI6GE

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks