Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.121dda580ffd1ccd3394a9281a545c60.exe

  • Size

    12KB

  • Sample

    231101-q667wshg8y

  • MD5

    121dda580ffd1ccd3394a9281a545c60

  • SHA1

    1c53598432e545d1ff0dd117911d5dfedbe4ec69

  • SHA256

    4c2e85fab6ab216760118a3d4f088136f4f861b494b5ca1842da8546f6621ee0

  • SHA512

    b9a19117b7fc19d9e73399ad5423ad2b7162431cb48af173145df112bb2396714dfd72982e87212bce939e5808fc58e50917d64ffbdfa94cadc9eb8fb07541d2

  • SSDEEP

    384:gL7li/2zTq2DcEQvdhcJKLTp/NK9xaGC:+PM/Q9cGC

Score
7/10

Malware Config

Targets

    • Target

      NEAS.121dda580ffd1ccd3394a9281a545c60.exe

    • Size

      12KB

    • MD5

      121dda580ffd1ccd3394a9281a545c60

    • SHA1

      1c53598432e545d1ff0dd117911d5dfedbe4ec69

    • SHA256

      4c2e85fab6ab216760118a3d4f088136f4f861b494b5ca1842da8546f6621ee0

    • SHA512

      b9a19117b7fc19d9e73399ad5423ad2b7162431cb48af173145df112bb2396714dfd72982e87212bce939e5808fc58e50917d64ffbdfa94cadc9eb8fb07541d2

    • SSDEEP

      384:gL7li/2zTq2DcEQvdhcJKLTp/NK9xaGC:+PM/Q9cGC

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks