Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4711e9fbf2b53f6fe05e526e73c206e4

  • Size

    75KB

  • Sample

    231219-r8jeaabdd6

  • MD5

    4711e9fbf2b53f6fe05e526e73c206e4

  • SHA1

    b4878e1a370ff69ce43f050d47f9f798d89cb05f

  • SHA256

    289626bfb2e5c13c49a8df9509a5e247dbdb2365c42f0713350a2d9061d2e9bb

  • SHA512

    ac3bcad9d41bdb4275b0b09a43768ddce6f995f98ec0a60b3915d421602319f8f0fbef980833dd20d922947393251137ef8cdc1e77aba69c3362365618294690

  • SSDEEP

    1536:+5w/ETvpPEutHwHiHoHV/NBbgzrqNldFCnDNlN1t7g9:sw/ELpc/NBbgzrqNldFCnDNlN1M

Score
10/10

Malware Config

Targets

    • Target

      4711e9fbf2b53f6fe05e526e73c206e4

    • Size

      75KB

    • MD5

      4711e9fbf2b53f6fe05e526e73c206e4

    • SHA1

      b4878e1a370ff69ce43f050d47f9f798d89cb05f

    • SHA256

      289626bfb2e5c13c49a8df9509a5e247dbdb2365c42f0713350a2d9061d2e9bb

    • SHA512

      ac3bcad9d41bdb4275b0b09a43768ddce6f995f98ec0a60b3915d421602319f8f0fbef980833dd20d922947393251137ef8cdc1e77aba69c3362365618294690

    • SSDEEP

      1536:+5w/ETvpPEutHwHiHoHV/NBbgzrqNldFCnDNlN1t7g9:sw/ELpc/NBbgzrqNldFCnDNlN1M

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks