Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0abcac168e9f57bfeaa19d1a0e5dbf9b

  • Size

    440KB

  • Sample

    231230-canh1sedfp

  • MD5

    0abcac168e9f57bfeaa19d1a0e5dbf9b

  • SHA1

    d248545e0f652b13356a7f3671215f1bdbb8b874

  • SHA256

    35e3aa85bd1d97eed8a682a6eed57007b040a1b0b67e2e13a97fc3f2d5be37a8

  • SHA512

    91df5115f6e91e51b30bc2c4d6854f53fb15831e2e0c0badb803c2f0721ec7e92ce99f6d60eca93a136c2f3e802fad2a3435cbd06b3c9141ada752f5c1c230cf

  • SSDEEP

    6144:5ZunObR8sVImcyYC5JvY5XlCdraWDgfjrfhartBI+zlbKvCB2txqWwKQ3GdYuxPZ:WK+mzMNE/Ds3fM20lHmYWwH3zuxPnIc

Score
7/10
upx

Malware Config

Targets

    • Target

      0abcac168e9f57bfeaa19d1a0e5dbf9b

    • Size

      440KB

    • MD5

      0abcac168e9f57bfeaa19d1a0e5dbf9b

    • SHA1

      d248545e0f652b13356a7f3671215f1bdbb8b874

    • SHA256

      35e3aa85bd1d97eed8a682a6eed57007b040a1b0b67e2e13a97fc3f2d5be37a8

    • SHA512

      91df5115f6e91e51b30bc2c4d6854f53fb15831e2e0c0badb803c2f0721ec7e92ce99f6d60eca93a136c2f3e802fad2a3435cbd06b3c9141ada752f5c1c230cf

    • SSDEEP

      6144:5ZunObR8sVImcyYC5JvY5XlCdraWDgfjrfhartBI+zlbKvCB2txqWwKQ3GdYuxPZ:WK+mzMNE/Ds3fM20lHmYWwH3zuxPnIc

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks