Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Video.scr

windows7-x64

7

Video.scr

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    12500a59d553417e14c97ce1b36a453b

  • Size

    428KB

  • Sample

    231230-jfjwcaeda4

  • MD5

    12500a59d553417e14c97ce1b36a453b

  • SHA1

    815eae60ac97484ba40962bc0cf0e26df0ca0e4b

  • SHA256

    7eb551e50bcfc1d4a3209399aaa5af6f6079aff2a233b103af933468d75dae30

  • SHA512

    ceebe53f997ff5fc9b17702ee371192df8f813d1cd259858a4df24d2f34d325e845bc0b07899d625df10be602f1cc52965967fb1d38984697bc88b016d5d20bd

  • SSDEEP

    12288:eRPNz9G8KxuWHgI9jQf2ufVcJ4P5hvpqwkyeU6gFQPBS:WP590Iog11fV6UhvpqRU6CSBS

Score
7/10
ransomwarespywarestealer

Malware Config

Targets

    • Target

      Video.scr

    • Size

      501KB

    • MD5

      95e262649c92fe0ed751212d5ab5ceb4

    • SHA1

      47335a184e4ea778f4bd5fefdb84862f53377486

    • SHA256

      b401cbb362310927a6c965b0c08572cbe1d306a45f2c4fc0d180950b997c0f45

    • SHA512

      b19dfee8dee74636e7887bc8a4e82795040c0508ba41c8fd591ff5ae9933cb4a69c83e4d738a47a771b07d018aee2ed9e8d54f94b5ed05ea4d0fe584f8f1c9dd

    • SSDEEP

      6144:mKrxiyLvmWVXGlvqSKMXoztsPaB/9O+xBh0OXjNKU7+X0X+Yhs3hKjV0Muq+p/Oc:3tLXhnWoJsPa/FbTgU7HX+YZVDvZ9Y

    Score
    7/10
    ransomwarespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks