Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7350622fc8ceb587cf01ca055d81874d

  • Size

    600KB

  • Sample

    240125-bb4e7acfh5

  • MD5

    7350622fc8ceb587cf01ca055d81874d

  • SHA1

    1b7017c4e4325bd4d01570a14ae1d06c5685b3eb

  • SHA256

    2729f57d011b73c4cb6964ab3ce3433f820f5c7ee287032c3070640edcaa0fbf

  • SHA512

    15b47c227ad5e4b6f8c8255091974421f5a3531687b76a311ed5e3472462da3f2e41bc2cd355997c749cdb3cf808bccbfff81be0bb809c9ed87fbbd1696f7abf

  • SSDEEP

    12288:8oLDniit67XLIulF/me3THMCKQW8I473C6h2:5ii4XLIulF+e3TsrQfI47/2

Score
7/10

Malware Config

Targets

    • Target

      7350622fc8ceb587cf01ca055d81874d

    • Size

      600KB

    • MD5

      7350622fc8ceb587cf01ca055d81874d

    • SHA1

      1b7017c4e4325bd4d01570a14ae1d06c5685b3eb

    • SHA256

      2729f57d011b73c4cb6964ab3ce3433f820f5c7ee287032c3070640edcaa0fbf

    • SHA512

      15b47c227ad5e4b6f8c8255091974421f5a3531687b76a311ed5e3472462da3f2e41bc2cd355997c749cdb3cf808bccbfff81be0bb809c9ed87fbbd1696f7abf

    • SSDEEP

      12288:8oLDniit67XLIulF/me3THMCKQW8I473C6h2:5ii4XLIulF+e3TsrQfI47/2

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

    • Checks for any installed AV software in registry

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks