Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1414899745a51fbc4a944b94d98d788b

  • Size

    244KB

  • Sample

    231230-k2thcaghg3

  • MD5

    1414899745a51fbc4a944b94d98d788b

  • SHA1

    6423e1703f3bc46d480b1422be3c5fb1c82cc683

  • SHA256

    0da7f3696f6be0d279ea7b27a096d411bb24624c6bdfff94cba505c96be9715e

  • SHA512

    c9099cb72264ec1b30e3810797013c9e47b1b9df952fc30137d2b39d192ca80277a8d7a0f085ec5dd51e32dff649de0233fe3bd4b0f745de67538794bcdda0fb

  • SSDEEP

    6144:J5Es5EzPLrs7CZIQtVpoY85spRMWLwDE3C5gn9OD4u9Xb:J5EsALiC2QtVpoU3dyL

Score
10/10

Malware Config

Targets

    • Target

      1414899745a51fbc4a944b94d98d788b

    • Size

      244KB

    • MD5

      1414899745a51fbc4a944b94d98d788b

    • SHA1

      6423e1703f3bc46d480b1422be3c5fb1c82cc683

    • SHA256

      0da7f3696f6be0d279ea7b27a096d411bb24624c6bdfff94cba505c96be9715e

    • SHA512

      c9099cb72264ec1b30e3810797013c9e47b1b9df952fc30137d2b39d192ca80277a8d7a0f085ec5dd51e32dff649de0233fe3bd4b0f745de67538794bcdda0fb

    • SSDEEP

      6144:J5Es5EzPLrs7CZIQtVpoY85spRMWLwDE3C5gn9OD4u9Xb:J5EsALiC2QtVpoU3dyL

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks