Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

GOLAYA-BABE.exe

windows7-x64

1

GOLAYA-BABE.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3edc0298b361f51281563cc5c9319acd

  • Size

    124KB

  • Sample

    240103-xy85vahafm

  • MD5

    3edc0298b361f51281563cc5c9319acd

  • SHA1

    a7608612e3b5df7884d2fca0961479d670d87498

  • SHA256

    894e94177250faafe6cac5878daad0e2f3edeed52dbbeff872527ff78c0d1755

  • SHA512

    2dc4399a3456a7cab5c8d03f1b377b67fca2dd01c47f60adaa91a394156c6cd6811741fde6cb204546ae0560acc3458c36056b6c19017479886809deff261ec6

  • SSDEEP

    3072:inHXMpxcGxFyhQ0bOqYJrC06GdkEfj+BcB9AHDMVTCjtj:GHmGY/o0JrV6GJ+q98DMxsj

Score
7/10
discovery

Malware Config

Targets

    • Target

      GOLAYA-BABE.exe

    • Size

      239KB

    • MD5

      6839c4c1e533bdef312fa9501b7cd622

    • SHA1

      0a4a288e686a64c0d926e5d5c7ddd46ec7eeeaa1

    • SHA256

      5b40e9c2a5bbd190d09eade750b1ce1a48887f6822a3e8a4cf3f927c38088982

    • SHA512

      d0cafe97a7ab0444424d88d6fddbe2bb0bc9d33abaaeec21101388982d40728d5114d30d1d9b3f7b5d0ea77cbfc6f8067256d4cd7613d14de74ccd196a1dd954

    • SSDEEP

      3072:MBAp5XhKpN4eOyVTGfhEClj8jTk+0hYoO/MgjqEWBz+Cgw5CKHy:7bXE9OiTGfhEClq95/MgXJJUy

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks