Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

geode-inst...in.exe

windows7-x64

7

geode-inst...in.exe

windows10-2004-x64

7

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

Geode.pdb

windows7-x64

3

Geode.pdb

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

1

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...hd.xml

windows7-x64

1

geode/reso...hd.xml

windows10-2004-x64

1

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

geode/reso...et.xml

windows7-x64

1

geode/reso...et.xml

windows10-2004-x64

1

geode/reso...et.png

windows7-x64

3

geode/reso...et.png

windows10-2004-x64

3

geode/reso...hd.png

windows7-x64

3

geode/reso...hd.png

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    geode-installer-v2.0.0-beta.19-win.exe

  • Size

    25.8MB

  • Sample

    240212-1q112sch4w

  • MD5

    7ed868c7785936197054c0a8ae724311

  • SHA1

    80a2ae57a8b662554f889fecbf4602d9dfbb61c0

  • SHA256

    0de54ccd8146146f7b7b5e92885b919779e2e923b2a12319f258d2e32d7777cd

  • SHA512

    1f744301081c7f0380f91db86e57b60eb6fff9772a5d8b1c94d70736687044507c57bd483fb21fbe597846f2fd13413e1c82f2b59c6d6739b68d8263de62d177

  • SSDEEP

    786432:uBhwPIbvjArPw7d81ntXB7Ep+zJfKcf2zuP9o:utbcM7S1ntXB7E4zH289o

Score
7/10

Malware Config

Targets

    • Target

      geode-installer-v2.0.0-beta.19-win.exe

    • Size

      25.8MB

    • MD5

      7ed868c7785936197054c0a8ae724311

    • SHA1

      80a2ae57a8b662554f889fecbf4602d9dfbb61c0

    • SHA256

      0de54ccd8146146f7b7b5e92885b919779e2e923b2a12319f258d2e32d7777cd

    • SHA512

      1f744301081c7f0380f91db86e57b60eb6fff9772a5d8b1c94d70736687044507c57bd483fb21fbe597846f2fd13413e1c82f2b59c6d6739b68d8263de62d177

    • SSDEEP

      786432:uBhwPIbvjArPw7d81ntXB7Ep+zJfKcf2zuP9o:utbcM7S1ntXB7E4zH289o

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/modern-wizard.bmp

    • Size

      201KB

    • MD5

      3c5626cfc549b9a2fc147f84601a68b1

    • SHA1

      df2015ab7aa2eb9943cc5929fb9f7ec14a26b71e

    • SHA256

      4873a57c9b2d697e4f8689ff7a2f785fb836a6289bc377320987b5541856234c

    • SHA512

      b076a7c5350a8fda2f641c052bab4f87a602f313c91a3c0ceab2da45f9753cd89ee97497a5c67552e65a97de1366e69bfc531f6b728224e86314b90b91fd9511

    • SSDEEP

      384:Gx1uncOx0y1ARSzKyHOTEdWTBSYY0Z9XENc5iXbu8naAQHmUn0R/V8jQ1P6g1PKF:0uxVMsf8EbFGHmLRt8jQ1iE95CP

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral3behavioral4

    • Target

      Geode.pdb

    • Size

      32.9MB

    • MD5

      2dae590c12613060bb61c346bdae872c

    • SHA1

      6cf1a53e4240bd6164050c8233e1fd283b1b6594

    • SHA256

      59f5f1e6f3e5f73462c51db3a0de84eda5778dbd752f89d4d3b7da7333bd7ddb

    • SHA512

      6682925225212e55ac4fb9885a5fad5d7c2965f07fc74979a52513ba6a11dad57fe37a1063a5ab8a57dcf21dbd243687ad6e9c6101d3fe4c1401a6ed0dff493d

    • SSDEEP

      196608:yg1eEXEBUnT9mSINUQXgu6AkOm/uAuAyjh7HevlLGmz3qsn47l8NT7lm7IRR:YK47l+mSR

    Score
    3/10
    behavioral5behavioral6

    • Target

      geode/resources/geode.loader/APISheet-hd.plist

    • Size

      6KB

    • MD5

      b3be4aa674c35b9c9c07d545364b036e

    • SHA1

      2554db77e27504c363b8c16c75f4bb752bb35b92

    • SHA256

      e96a2d5bc8f0fb5faf06a67f5a022e985852dcaea70d20cd73a3d27271648e52

    • SHA512

      c4d011e96a913c71b8ab34b996e8ea589f7150d3b28b50e30aa4461df481912b3cc18d3e55352123f6f47f3d1fe32136c82fe9855f1676bb6b2eda59029d555b

    • SSDEEP

      96:CyQcEcodcstuO30cRcCcEc+zcHucAWgWS9cpcrc+cfE:XRRSt

    Score
    1/10
    behavioral7behavioral8

    • Target

      geode/resources/geode.loader/APISheet-hd.png

    • Size

      83KB

    • MD5

      15c27c196cf31b2b898ae79a1430317e

    • SHA1

      f17369967c9273336250722ef98fe701eb922e12

    • SHA256

      664e4d748821bdd570219726918e37395f235fc0d207324d4db33db637f013a0

    • SHA512

      d5f2fbeaa644af79df417737af5a90eef8f9d976dfc97b657a4a292b1143c15bd71c9b56324334cdee5e0ce83dbba30310735d3ab2985b3ddbd4bb4cb41e4589

    • SSDEEP

      1536:+CFE37dLUWRj1fASqz1ynA9Z+AfyD7HEaKeP8wlb+q9A/vdGF55a44xtJpoD3:+CFEiWRjKLGiZ+AaXHZ8Kb+6ivQFHwtw

    Score
    3/10
    behavioral10behavioral9

    • Target

      geode/resources/geode.loader/APISheet-uhd.plist

    • Size

      6KB

    • MD5

      881ce7ef97c058d185138317578c645b

    • SHA1

      7b3dc6bba7338b44b2f844f4f2ddb824114e04e7

    • SHA256

      0d9140e7c78c2b81b78ff0f14150853f427b674a1e234e26745e8663d3db1d3d

    • SHA512

      3177680723a0333bc08cfe9943d812f8d9febdea7b7eec8cd6799ef8cd150198ab72bc81e9773cbe6eede26e7b6b33bc9d89b7783dce4b26f8bd70dda2ca50a4

    • SSDEEP

      96:CyQcJcwcMFuRx0x4zcAcnonz9s9xO3xOk5cZrlcZxUcZRjy:XaUo14rrKxpR+

    Score
    1/10
    behavioral11behavioral12

    • Target

      geode/resources/geode.loader/APISheet-uhd.png

    • Size

      145KB

    • MD5

      a207c0391b200d467b513fc83e61085a

    • SHA1

      91c859515fc36c99efc9d1e5753eeb2a226536c4

    • SHA256

      20bac966567517d3bbfc1edcfdcf83873705254dd957b2a798ec14f0ccceb910

    • SHA512

      bd0e6cc6ff545aa4f34d811dd9b485d29effd27d43014edb94c05e3827df9c52e2674fad838278dbb7f036ef578e1571050919f08930fd4b132f493883691d19

    • SSDEEP

      3072:MCwgfqYNqvof0ICEs3bn5BZnlnkhsLEAfOXrfNxPBxyYYi4RW8UOt:MQfxEvQDfsr5BZlkfRXrfv5DYi4M8rt

    Score
    3/10
    behavioral13behavioral14

    • Target

      geode/resources/geode.loader/APISheet.plist

    • Size

      6KB

    • MD5

      75381122863ca1d818bf6daf66c8a178

    • SHA1

      114aaf4620abd862b5628598b484b4778db837da

    • SHA256

      c4662b6f6a96ad8989b2b9859a50fc3c6fdc10ce85d2ea80b062c7e1ae07a775

    • SHA512

      de452af0b194b4073f24c4ff565de3da708472bab31d7734094594e75e9776c2e463c51840e0ffc2723805eee18d34e10c44f02ee3724a0435f07072528209e6

    • SSDEEP

      96:CyQco4FGcNctBuc3Qcw0cycGcWcEzspcBcIOF0CcWmECczPc22cWVZ:X2ovgL

    Score
    1/10
    behavioral15behavioral16

    • Target

      geode/resources/geode.loader/APISheet.png

    • Size

      29KB

    • MD5

      afb55e821e4db02cb0ccb397bca1e067

    • SHA1

      ba1bfc4a6a81d04f5409c9108aefe38ccb38e621

    • SHA256

      86b0b11ecbd3fa9bdeec7f44da37225f7d7ab3a1a3e7e6326e31017bad4502fa

    • SHA512

      d81b99a7c269b0a2069578bec4bc0b631e670d1456864c182754dd1f438a8d774b7bf27fed4358467f38988f1a2a13b55ec9f623195bcaf301fde6ac52ffae47

    • SSDEEP

      768:KFAVmmuzp5bKPHzPvRoumhgdmEcQZs2IsXoZznbzMAgqoH2rJ:KFARubaHrR3mSGMs2IsMzb1gqomJ

    Score
    3/10
    behavioral17behavioral18

    • Target

      geode/resources/geode.loader/BlankSheet-hd.plist

    • Size

      21KB

    • MD5

      aa112d3102c846db11038c05153b26e5

    • SHA1

      ae342b7692085e75e2ab5401ad680fb7ef82fe6a

    • SHA256

      0e92aa97c2b0658470e5ff73c4d90cb9cac777ad7236f1c8f7603e3431bb2e28

    • SHA512

      47757e592cd18dd0a85584ac73dac8259ce9672a5af8f38ce1c45e8c24406747f3236dc63e782551ad9621e8bd4e2e8ffae25af192492cc081533c9c8e815443

    • SSDEEP

      96:CybcMPcM1zcM3B6sdFwK7X0zvlbrhuyjs1CG+uzouzcuzwuzpuzJ6MmMKYXgdH1r:XB9fswn51JNoVh7BdG

    Score
    1/10
    behavioral19behavioral20

    • Target

      geode/resources/geode.loader/BlankSheet-hd.png

    • Size

      886KB

    • MD5

      d8bd66d867de7af2f0dda647ec321a39

    • SHA1

      b60ba28ae83b7c8d016697ffae521d1d2fcef1e8

    • SHA256

      460b18c2c69c5f4431cb46740f408513b0cf5316cd126c85f79d1049f9c0ebb5

    • SHA512

      9b22b22f5918ead2b6b46c9278c34125df30f91e264e773839f1f04c7edb08829e0e13a75792db78c42c4c678ffe5d5ed3c21d762d223d2aa2b39ab2eced5611

    • SSDEEP

      24576:r9iXG0h77E/XaKz26T+fhQDcsoJpBk8cvjOqNUkCU:r9MZBiXjz26T+KDS7S6qP

    Score
    3/10
    behavioral21behavioral22

    • Target

      geode/resources/geode.loader/BlankSheet-uhd.plist

    • Size

      21KB

    • MD5

      1283e1d12e2b236eaa67c27fef84db93

    • SHA1

      55ae500c1cde0509eda1f6f7dad327c0fd504c67

    • SHA256

      ac6230131146bf37afb8369c75c3b576289ff2689367c591a922d5eda048737e

    • SHA512

      b0c587c4eb76ad1288239da1cbd8b0ff4f1a1bcbb8df6273894fbd31243535d48ab87ef8db5d4bcccecb82390fb8c5de1fd0503ec3c910008b9602b8746ca6d9

    • SSDEEP

      384:nkJPmBeeBVlbcRIWbL0Kb3TTTEJrGmKOgUuoLryL:VrY

    Score
    1/10
    behavioral23behavioral24

    • Target

      geode/resources/geode.loader/BlankSheet-uhd.png

    • Size

      1.3MB

    • MD5

      8c4d22bc138589e372a99cf103b7800c

    • SHA1

      5b431220a9c310f6cee49ddd4eb75dac968eabd5

    • SHA256

      d031e9c555fa2dc2eab287854e163bfc8ff0b8a66613d73f415319fab7e97208

    • SHA512

      4d15909eb0e9a05ca2a00041c224914d01d6b5cb3d9b9ccbb415744bfb6587219febdce3724ed1e9d1100485be7168f7a13f0a0e0002b037afc630015c51435a

    • SSDEEP

      24576:sLPVK8C/V4txbkGSuyi4kiBigUT+uTFAwP9oobycXK40drbBtis:IVKJ4QGSuyj3uPP+olv0Bdks

    Score
    3/10
    behavioral25behavioral26

    • Target

      geode/resources/geode.loader/BlankSheet.plist

    • Size

      20KB

    • MD5

      6459239c490d22b97e52f8910c4d923f

    • SHA1

      7dbde5eae3fa30455b7aa2d5e9b9ca85cf40336a

    • SHA256

      e120ef0321f2d52d8aba307358080c83025b295d8b59785a5c05720bc5ed27a7

    • SHA512

      7d1e34348315eec4b3bc990840d0baed88f133e3406463bf81ed929c66a1424b2f56369e0e449f3bface8b40e896aa1f4606e34377e6510c1c1d831ba7b0bfdc

    • SSDEEP

      96:CybcicFzctGdG0xAcQqacQqMcQq9cQqylcQqC+IO2JxcxyZ5cDc+ccczcw6chcb9:XgXhORkUNh

    Score
    1/10
    behavioral27behavioral28

    • Target

      geode/resources/geode.loader/BlankSheet.png

    • Size

      237KB

    • MD5

      99b461bdf0f532ba4f1f9510be26c1dc

    • SHA1

      e167b05e8fef6a03bd587d2e30b5316185e5c143

    • SHA256

      c0fa09937a8881914b84cb71f699b8931628ded6bdca191a25b75d81db3f66f4

    • SHA512

      debc4ce7934c54533254bf7a02e3f5a5c08bbeeac2d5256745ea1611a37638ac57ee2eef1326d5e707eff4d99a4d046a92716728e87e1bd2af52ce1f3924f524

    • SSDEEP

      6144:JJfLIDayvLuYU1nEPuclCVxMDmzoauS5FP1EHhVvhak1Mh:JJfEuYU5EPlkwmzD5MhVIyMh

    Score
    3/10
    behavioral29behavioral30

    • Target

      geode/resources/geode.loader/GE_button_01-hd.png

    • Size

      2KB

    • MD5

      8e2362a83e7d3275225de1932d6ca4f5

    • SHA1

      0f96a65d28bf533e65a06ebe3d5d120b44f4bff3

    • SHA256

      9120029958578fe3b16040cc60141d868390918435215f8d1788ee1eba44ce5a

    • SHA512

      ba42948735fe30c9b94a1ec59f1972375dbf82da8a66bdcc610713100d1e3e48ba61c27676224bb106506befaa619e78219746d9ddd24b71d2e4d9c1186a5dd1

    Score
    3/10
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.