Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

GOLAYA-BABE.exe

windows7-x64

8

GOLAYA-BABE.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c9611e6a7b9f86141f2bd39ec53d453

  • Size

    84KB

  • Sample

    231225-tstw7agad3

  • MD5

    2c9611e6a7b9f86141f2bd39ec53d453

  • SHA1

    f11ceb3d3b4ff1aa8aa24405ad78a48041dbe58a

  • SHA256

    a3fea87688742a4539e4756f9a2d23ac5b3e81b45ef350e6583a000aeea1dd1b

  • SHA512

    292a5d38e34371a82b66e5f620dfef746e8bf77e5f2df278a8556fb12a82b7b59d4ba03e1aa979dd5dcb12e2df12e4073bbe31d4f5c0577fe3204b552744cf27

  • SSDEEP

    1536:bUnVN5HOHUEs6iqcuyIJ4fnb07w3317N5iLB2aH+TVjfJXu6Nthvb3W61fgInDRO:bUnLYCq/Fufnb07Y1C2aH4nu6zhvb3Xi

Score
8/10

Malware Config

Targets

    • Target

      GOLAYA-BABE.exe

    • Size

      180KB

    • MD5

      79edd945122f4c8e7a4eb728f12168a4

    • SHA1

      6b003a03c1a1752661e4beb10eb47a55de396e16

    • SHA256

      7705d494ac9653a3d421c4199f53e3d00661cafce7c560fd5e561a0946a6b445

    • SHA512

      8a71176d2489453c1480be2d4d27b96675a5fd8b12b6aa8c804cca429c15c99c7925e60b1baf27e5b48386626955d793f1912aabfce013d04e10c2fc50b05772

    • SSDEEP

      3072:iBAp5XhKpN4eOyVTGfhEClj8jTk+0hUEQeozxaN:xbXE9OiTGfhEClq9rEQFE

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks