Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    090de4961821bf6dfbda902e5a758f38

  • Size

    278KB

  • Sample

    231219-mm74asfbf7

  • MD5

    090de4961821bf6dfbda902e5a758f38

  • SHA1

    09c8ad78bf1e4f165c1749f67a5087b75c3c33fd

  • SHA256

    8638b506bbd352b17dd7afb3b53076cb6e1eb7185c6cb640721c1f53159a55f7

  • SHA512

    24fc58e86670bdfdaf5e1a2ef31598e5dfab096918563be4f2b14c779596b7afa8382b59a015f3bf4b95d89fbc0c3cd5535dfd53328d95ee42a05600bee8c5e8

  • SSDEEP

    3072:v15rEsm15p15rEsm15aEsm15p15q15rEsm15p15rEsm15C:t5rZ05b5rZ05aZ05b5g5rZ05b5rZ05C

Score
8/10
upx

Malware Config

Targets

    • Target

      090de4961821bf6dfbda902e5a758f38

    • Size

      278KB

    • MD5

      090de4961821bf6dfbda902e5a758f38

    • SHA1

      09c8ad78bf1e4f165c1749f67a5087b75c3c33fd

    • SHA256

      8638b506bbd352b17dd7afb3b53076cb6e1eb7185c6cb640721c1f53159a55f7

    • SHA512

      24fc58e86670bdfdaf5e1a2ef31598e5dfab096918563be4f2b14c779596b7afa8382b59a015f3bf4b95d89fbc0c3cd5535dfd53328d95ee42a05600bee8c5e8

    • SSDEEP

      3072:v15rEsm15p15rEsm15aEsm15p15q15rEsm15p15rEsm15C:t5rZ05b5rZ05aZ05b5g5rZ05b5rZ05C

    Score
    8/10
    • Drops file in Drivers directory

    • Manipulates Digital Signatures

      Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks