Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
090de4961821bf6dfbda902e5a758f38
-
Size
278KB
-
Sample
231219-mm74asfbf7
-
MD5
090de4961821bf6dfbda902e5a758f38
-
SHA1
09c8ad78bf1e4f165c1749f67a5087b75c3c33fd
-
SHA256
8638b506bbd352b17dd7afb3b53076cb6e1eb7185c6cb640721c1f53159a55f7
-
SHA512
24fc58e86670bdfdaf5e1a2ef31598e5dfab096918563be4f2b14c779596b7afa8382b59a015f3bf4b95d89fbc0c3cd5535dfd53328d95ee42a05600bee8c5e8
-
SSDEEP
3072:v15rEsm15p15rEsm15aEsm15p15q15rEsm15p15rEsm15C:t5rZ05b5rZ05aZ05b5g5rZ05b5rZ05C
Behavioral task
behavioral1
Sample
090de4961821bf6dfbda902e5a758f38.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
090de4961821bf6dfbda902e5a758f38.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
090de4961821bf6dfbda902e5a758f38
-
Size
278KB
-
MD5
090de4961821bf6dfbda902e5a758f38
-
SHA1
09c8ad78bf1e4f165c1749f67a5087b75c3c33fd
-
SHA256
8638b506bbd352b17dd7afb3b53076cb6e1eb7185c6cb640721c1f53159a55f7
-
SHA512
24fc58e86670bdfdaf5e1a2ef31598e5dfab096918563be4f2b14c779596b7afa8382b59a015f3bf4b95d89fbc0c3cd5535dfd53328d95ee42a05600bee8c5e8
-
SSDEEP
3072:v15rEsm15p15rEsm15aEsm15p15q15rEsm15p15rEsm15C:t5rZ05b5rZ05aZ05b5g5rZ05b5rZ05C
Score8/10-
Drops file in Drivers directory
-
Manipulates Digital Signatures
Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops file in System32 directory
-