Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.121d2d0ec9daff4bbad602dd3d7ff4e0_JC.exe

  • Size

    384KB

  • Sample

    231014-p6dpxagc56

  • MD5

    121d2d0ec9daff4bbad602dd3d7ff4e0

  • SHA1

    4bde8cb1885bce6e8bc2a2d7480c9a8b54946303

  • SHA256

    91680174c6b87f888531008b7590caa4afad0b9ab9b8647407609295b5f724f8

  • SHA512

    fe5a8d6350ef232fee32c49fdfb1dbdcfaf223a554ab3ff14d0cde6aaa82647809b91b13d2ee13cff97ee8d881be3b7c7e1958742baa148bab292dd7cc868161

  • SSDEEP

    12288:eXwOrR6ZQCEHobg1fT8muY4ZxUBjvrEH72:eXwOrRnhZT4YkErEH72

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.121d2d0ec9daff4bbad602dd3d7ff4e0_JC.exe

    • Size

      384KB

    • MD5

      121d2d0ec9daff4bbad602dd3d7ff4e0

    • SHA1

      4bde8cb1885bce6e8bc2a2d7480c9a8b54946303

    • SHA256

      91680174c6b87f888531008b7590caa4afad0b9ab9b8647407609295b5f724f8

    • SHA512

      fe5a8d6350ef232fee32c49fdfb1dbdcfaf223a554ab3ff14d0cde6aaa82647809b91b13d2ee13cff97ee8d881be3b7c7e1958742baa148bab292dd7cc868161

    • SSDEEP

      12288:eXwOrR6ZQCEHobg1fT8muY4ZxUBjvrEH72:eXwOrRnhZT4YkErEH72

    Score
    7/10
    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks