Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

9862c8d1ed...c7.exe

windows7-x64

8

9862c8d1ed...c7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9862c8d1ed05b1f41aa58ffcd621c0c7

  • Size

    556KB

  • Sample

    240213-d876ragg5t

  • MD5

    9862c8d1ed05b1f41aa58ffcd621c0c7

  • SHA1

    b367426011a95facc927718018b7b214a40af948

  • SHA256

    d000d9b44f81d02f49b76aea429c502c770834a29d9b2794e8d109e3b572f118

  • SHA512

    5c07982b036fe7f1257d3c3a7d49556d69dd32abb04b4f6821a2156670122bf2f9a8a2234d0f48541eb358d94fecab2e91d859675de25638dd0813c90458d37f

  • SSDEEP

    6144:twkajyiWz7KXsS5sTqPBpJdGE1zk08aR7xR3p73hwV:ujyfHSmbEp18aRdD0

Score
8/10
persistence

Malware Config

Targets

    • Target

      9862c8d1ed05b1f41aa58ffcd621c0c7

    • Size

      556KB

    • MD5

      9862c8d1ed05b1f41aa58ffcd621c0c7

    • SHA1

      b367426011a95facc927718018b7b214a40af948

    • SHA256

      d000d9b44f81d02f49b76aea429c502c770834a29d9b2794e8d109e3b572f118

    • SHA512

      5c07982b036fe7f1257d3c3a7d49556d69dd32abb04b4f6821a2156670122bf2f9a8a2234d0f48541eb358d94fecab2e91d859675de25638dd0813c90458d37f

    • SSDEEP

      6144:twkajyiWz7KXsS5sTqPBpJdGE1zk08aR7xR3p73hwV:ujyfHSmbEp18aRdD0

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks