Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

0855573ba6...d8.exe

windows7-x64

8

0855573ba6...d8.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0855573ba63141f0259baab35e5b9dd8

  • Size

    17KB

  • Sample

    231230-amx7wafhbj

  • MD5

    0855573ba63141f0259baab35e5b9dd8

  • SHA1

    57a5dabf66a816d009e77164539a7460c0f4baa6

  • SHA256

    13be822124ac2b9e65b36c720bd04ae7a4e51932fae03b2fbefd508777204151

  • SHA512

    11af88a9d3196313dede55adffb912a65a69d8fbbd22419f03be2d560121dbced4983cf3a672816d830aedb28b192c1ca30ade70542cf97312ee5631baf1a06a

  • SSDEEP

    384:9NF1lJI/JcmZO2Zp+Nye8pqrmub8TyztsDN:zbc/JoKK8o8TyJc

Score
8/10
persistence

Malware Config

Targets

    • Target

      0855573ba63141f0259baab35e5b9dd8

    • Size

      17KB

    • MD5

      0855573ba63141f0259baab35e5b9dd8

    • SHA1

      57a5dabf66a816d009e77164539a7460c0f4baa6

    • SHA256

      13be822124ac2b9e65b36c720bd04ae7a4e51932fae03b2fbefd508777204151

    • SHA512

      11af88a9d3196313dede55adffb912a65a69d8fbbd22419f03be2d560121dbced4983cf3a672816d830aedb28b192c1ca30ade70542cf97312ee5631baf1a06a

    • SSDEEP

      384:9NF1lJI/JcmZO2Zp+Nye8pqrmub8TyztsDN:zbc/JoKK8o8TyJc

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks