Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-01-09...py.exe

windows7-x64

3

2024-01-09...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-01-09_02cd08e31c43c91b1fd150562debf20f_mafia_nionspy

  • Size

    344KB

  • Sample

    240110-gh5jqaegdl

  • MD5

    02cd08e31c43c91b1fd150562debf20f

  • SHA1

    3f0afb4617736bf02ff001f9f9c9ecfe771201b2

  • SHA256

    84ea6a35ea9783e3ef5bdfa211da8176d92ccf13ae3c280cbbdd98e4a6353494

  • SHA512

    d0e7c70dbe2de95ac22e26169ce0af42987032fc019147480c25c8d85a43294a7b68f1090924330558fefd7739032fc10eaad3da559a95c39ec38bcd77e964eb

  • SSDEEP

    6144:kTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:kTBPFV0RyWl3h2E+7pYm0

Score
7/10

Malware Config

Targets

    • Target

      2024-01-09_02cd08e31c43c91b1fd150562debf20f_mafia_nionspy

    • Size

      344KB

    • MD5

      02cd08e31c43c91b1fd150562debf20f

    • SHA1

      3f0afb4617736bf02ff001f9f9c9ecfe771201b2

    • SHA256

      84ea6a35ea9783e3ef5bdfa211da8176d92ccf13ae3c280cbbdd98e4a6353494

    • SHA512

      d0e7c70dbe2de95ac22e26169ce0af42987032fc019147480c25c8d85a43294a7b68f1090924330558fefd7739032fc10eaad3da559a95c39ec38bcd77e964eb

    • SSDEEP

      6144:kTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:kTBPFV0RyWl3h2E+7pYm0

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks