Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.ac9958e4a582ae514e4487ec9d273350.exe

  • Size

    228KB

  • Sample

    231105-jetddscd4s

  • MD5

    ac9958e4a582ae514e4487ec9d273350

  • SHA1

    a15765543d2c078975823fcebe88cd4b763ad76d

  • SHA256

    8668458c8a828b9a801383c149582c15db640d4eb5df60702db207dd2de26f25

  • SHA512

    aa512f6d6e898b7a28a5d4130efb3e8e9028dac9698b7b86b01fa0c72af399a10e0341c90123a9692b51dd22b7b2942692cd0b67d2640c4e9b508f7292dd57e8

  • SSDEEP

    3072:tIgcTTjAq4wbnBjvxc8287Gw8OUtyjMhTdglu4SUvmre:teAq4wb97KyjsTGxvn

Score
7/10

Malware Config

Targets

    • Target

      NEAS.ac9958e4a582ae514e4487ec9d273350.exe

    • Size

      228KB

    • MD5

      ac9958e4a582ae514e4487ec9d273350

    • SHA1

      a15765543d2c078975823fcebe88cd4b763ad76d

    • SHA256

      8668458c8a828b9a801383c149582c15db640d4eb5df60702db207dd2de26f25

    • SHA512

      aa512f6d6e898b7a28a5d4130efb3e8e9028dac9698b7b86b01fa0c72af399a10e0341c90123a9692b51dd22b7b2942692cd0b67d2640c4e9b508f7292dd57e8

    • SSDEEP

      3072:tIgcTTjAq4wbnBjvxc8287Gw8OUtyjMhTdglu4SUvmre:teAq4wb97KyjsTGxvn

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks