Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

3f32c05e98...cb.exe

windows7-x64

10

3f32c05e98...cb.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3f32c05e9865ef5de936a6ed48a927cb

  • Size

    128KB

  • Sample

    240103-2hba4abgen

  • MD5

    3f32c05e9865ef5de936a6ed48a927cb

  • SHA1

    a1481a3d1e5be0de26d5182b8f0b3e11f508f7e7

  • SHA256

    817ff07f08a8d6242ff7ad2547300068919d5bb2f17cf625230332257eaa1b77

  • SHA512

    b36685b42419235d867a216643574eb0b1b9d1aa62b149cd32c6b13d00db827a73581e9ffb3fd0450df13b3f1d3b8864f7b9485997cfdb93bbe2cf9f7219ec84

  • SSDEEP

    3072:4fwbcHVICc7soi3rK+/7uqelMYa3S1H2p:ewbAVFc7st3rK+/7uqelMYa3S1H

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      3f32c05e9865ef5de936a6ed48a927cb

    • Size

      128KB

    • MD5

      3f32c05e9865ef5de936a6ed48a927cb

    • SHA1

      a1481a3d1e5be0de26d5182b8f0b3e11f508f7e7

    • SHA256

      817ff07f08a8d6242ff7ad2547300068919d5bb2f17cf625230332257eaa1b77

    • SHA512

      b36685b42419235d867a216643574eb0b1b9d1aa62b149cd32c6b13d00db827a73581e9ffb3fd0450df13b3f1d3b8864f7b9485997cfdb93bbe2cf9f7219ec84

    • SSDEEP

      3072:4fwbcHVICc7soi3rK+/7uqelMYa3S1H2p:ewbAVFc7st3rK+/7uqelMYa3S1H

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks