Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    XIDRF.exe

  • Size

    40.2MB

  • Sample

    231122-vpjsgsed9t

  • MD5

    e8e93e4c8396aa3792f020f10f67f9fc

  • SHA1

    25349054267945301cdd8816290e2f7022c927eb

  • SHA256

    294e27afe4e0d79c7fa2d94699b95a54dbc4176603083ad5f0fff6a0c1f698d8

  • SHA512

    efabc20676a88c3a02ea66b99c68949d81584f70f06602f48de62ceb2a325d3bf40ada69f46a0d764c40123763f095a7745f819a016d6a3f47e9f755728339fa

  • SSDEEP

    786432:C+FZZ4/nNYHNTmMRdY18jqynymTRI0ryBr+ri1Jnar2L+:r7AnN6pmMo18tC0ryBr+rivg

Score
7/10

Malware Config

Targets

    • Target

      XIDRF.exe

    • Size

      40.2MB

    • MD5

      e8e93e4c8396aa3792f020f10f67f9fc

    • SHA1

      25349054267945301cdd8816290e2f7022c927eb

    • SHA256

      294e27afe4e0d79c7fa2d94699b95a54dbc4176603083ad5f0fff6a0c1f698d8

    • SHA512

      efabc20676a88c3a02ea66b99c68949d81584f70f06602f48de62ceb2a325d3bf40ada69f46a0d764c40123763f095a7745f819a016d6a3f47e9f755728339fa

    • SSDEEP

      786432:C+FZZ4/nNYHNTmMRdY18jqynymTRI0ryBr+ri1Jnar2L+:r7AnN6pmMo18tC0ryBr+rivg

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks