Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    INV#761538.exe

  • Size

    707KB

  • Sample

    231115-xfrsvadd87

  • MD5

    76e18b6761478a27d72769c2af683183

  • SHA1

    154472fe1ac359757442e1a94b0e6a6d2d4a7762

  • SHA256

    00e245b9a6266afb2eb6b81cf96520ca093b7242dd39b1b74daf4d5811ce35fe

  • SHA512

    e319d9789182347a9455cb1c7031f46bc6ce304d9c97a416c879866d4c5b5faa026c7c1a5a08713d77d6d60b6e698bcad3d874fa09c4e86d37b2a5fa3be80f93

  • SSDEEP

    12288:WSNuPgGOyd6ynyGnWAueyPuT5E4+4v1i4KJ7I7rAM4UwPAfZ9iIR2:dYHOyd6YWAvfi4diHJ7I7UM4vRI

Score
7/10

Malware Config

Targets

    • Target

      INV#761538.exe

    • Size

      707KB

    • MD5

      76e18b6761478a27d72769c2af683183

    • SHA1

      154472fe1ac359757442e1a94b0e6a6d2d4a7762

    • SHA256

      00e245b9a6266afb2eb6b81cf96520ca093b7242dd39b1b74daf4d5811ce35fe

    • SHA512

      e319d9789182347a9455cb1c7031f46bc6ce304d9c97a416c879866d4c5b5faa026c7c1a5a08713d77d6d60b6e698bcad3d874fa09c4e86d37b2a5fa3be80f93

    • SSDEEP

      12288:WSNuPgGOyd6ynyGnWAueyPuT5E4+4v1i4KJ7I7rAM4UwPAfZ9iIR2:dYHOyd6YWAvfi4diHJ7I7UM4vRI

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks