Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    20e8e5674d2beef05f0cfdf0b50b0c6355a00c16fd1618e534daa85f1df9c9ad

  • Size

    4.7MB

  • Sample

    231113-3tr9esfe4w

  • MD5

    13915da610f93292cfa38afe536eb0a2

  • SHA1

    9d396a81a91c9077cb68f1053e853131fc51a289

  • SHA256

    20e8e5674d2beef05f0cfdf0b50b0c6355a00c16fd1618e534daa85f1df9c9ad

  • SHA512

    d6ee50e4f06aa8b8d8333424cf413ef7ce64f3717d7d116fe2f2835d6c3bc1676c6b2bc01c513b134196ec7f1f3980acbcb25b1137e9062fca9327f978ccaf1f

  • SSDEEP

    98304:abonGQFI38Ox3r2Xa/t9IGi6tb2swtHNfJkOAshs9Jqt2b9aanr:a6GQG38O9DWC2nfJvbeqtsUa

Score
8/10
upx

Malware Config

Targets

    • Target

      20e8e5674d2beef05f0cfdf0b50b0c6355a00c16fd1618e534daa85f1df9c9ad

    • Size

      4.7MB

    • MD5

      13915da610f93292cfa38afe536eb0a2

    • SHA1

      9d396a81a91c9077cb68f1053e853131fc51a289

    • SHA256

      20e8e5674d2beef05f0cfdf0b50b0c6355a00c16fd1618e534daa85f1df9c9ad

    • SHA512

      d6ee50e4f06aa8b8d8333424cf413ef7ce64f3717d7d116fe2f2835d6c3bc1676c6b2bc01c513b134196ec7f1f3980acbcb25b1137e9062fca9327f978ccaf1f

    • SSDEEP

      98304:abonGQFI38Ox3r2Xa/t9IGi6tb2swtHNfJkOAshs9Jqt2b9aanr:a6GQG38O9DWC2nfJvbeqtsUa

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks