Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

02ebea33d1...9b.exe

windows7-x64

7

02ebea33d1...9b.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    02ebea33d1795ce5b377efa7ca5b2f9b

  • Size

    520KB

  • Sample

    231229-y43exsbccq

  • MD5

    02ebea33d1795ce5b377efa7ca5b2f9b

  • SHA1

    8d803dc5909ddba9318cca58d7e190aaf5b1cf56

  • SHA256

    e76ea96b4de05d951714814b1398f2bcea7ce0423fbd6683727bba5177902a9c

  • SHA512

    084c6c3c0e7ca79c340ceb7198ae8ae2213db53babee8c77d57b75d0a874e5a24387e2487613e75c48f8788fdaa0d8b52e4625592e3eabb926160314c09ce2ed

  • SSDEEP

    12288:jbCrX64ywpfYXatwHdLf2XKEkunFP6g5a:jGj6RFqmH9+XK3uN6g5a

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      02ebea33d1795ce5b377efa7ca5b2f9b

    • Size

      520KB

    • MD5

      02ebea33d1795ce5b377efa7ca5b2f9b

    • SHA1

      8d803dc5909ddba9318cca58d7e190aaf5b1cf56

    • SHA256

      e76ea96b4de05d951714814b1398f2bcea7ce0423fbd6683727bba5177902a9c

    • SHA512

      084c6c3c0e7ca79c340ceb7198ae8ae2213db53babee8c77d57b75d0a874e5a24387e2487613e75c48f8788fdaa0d8b52e4625592e3eabb926160314c09ce2ed

    • SSDEEP

      12288:jbCrX64ywpfYXatwHdLf2XKEkunFP6g5a:jGj6RFqmH9+XK3uN6g5a

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks