Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.8fbdebbda4b82495cea9f98cae846760.exe

  • Size

    204KB

  • Sample

    231014-wpen7seh67

  • MD5

    8fbdebbda4b82495cea9f98cae846760

  • SHA1

    983b70886f4a39ccefae72c006afa4c0820fcefe

  • SHA256

    5f8900aec85fbc1470385549dfb6ee83bb440cdb70c490bcc09f24a994cc792f

  • SHA512

    0ce8495d5d6aa8e8b692ef5a97e8f84e2e4a64fe390f96dadad3ac12052926e5f1a40252e16cbd4da9db95241fe1c0dbac2b58b7a7842b06707fbf52c5d6e712

  • SSDEEP

    3072:bm6W8W0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWfgs:qPt4QxL7B9W0c1RCzR/fSmlMD

Score
10/10

Malware Config

Targets

    • Target

      NEAS.8fbdebbda4b82495cea9f98cae846760.exe

    • Size

      204KB

    • MD5

      8fbdebbda4b82495cea9f98cae846760

    • SHA1

      983b70886f4a39ccefae72c006afa4c0820fcefe

    • SHA256

      5f8900aec85fbc1470385549dfb6ee83bb440cdb70c490bcc09f24a994cc792f

    • SHA512

      0ce8495d5d6aa8e8b692ef5a97e8f84e2e4a64fe390f96dadad3ac12052926e5f1a40252e16cbd4da9db95241fe1c0dbac2b58b7a7842b06707fbf52c5d6e712

    • SSDEEP

      3072:bm6W8W0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWfgs:qPt4QxL7B9W0c1RCzR/fSmlMD

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks