Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

Remove-Edge.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Remove-Edge.exe

  • Size

    7.7MB

  • Sample

    240217-vl2twsgh7t

  • MD5

    1d966f5a33ae6612e313c6dd6913c25c

  • SHA1

    117434104215609d07ef50ee39c12fa6f29fa093

  • SHA256

    b6fab3f62e29a08e0ca648b84a99e8144e80e320c626175e995d9b1ac78d7b1f

  • SHA512

    5967a2b6da51631f1d5bd18025f94a21a6f1e1237bb5fcd35788464801e2b8828a0c4cf603e2cd88beeba6bb9d9a14a61e0dfe02033f0ead51d7d28dcc06a5e3

  • SSDEEP

    196608:y/8Olb2w9+L0YFqQxA10++MvJHDO6D3U/7F1g:yplq5L0HQK1HnEzFa

Score
8/10
adwarepersistencepyinstallerstealer

Malware Config

Targets

    • Target

      Remove-Edge.exe

    • Size

      7.7MB

    • MD5

      1d966f5a33ae6612e313c6dd6913c25c

    • SHA1

      117434104215609d07ef50ee39c12fa6f29fa093

    • SHA256

      b6fab3f62e29a08e0ca648b84a99e8144e80e320c626175e995d9b1ac78d7b1f

    • SHA512

      5967a2b6da51631f1d5bd18025f94a21a6f1e1237bb5fcd35788464801e2b8828a0c4cf603e2cd88beeba6bb9d9a14a61e0dfe02033f0ead51d7d28dcc06a5e3

    • SSDEEP

      196608:y/8Olb2w9+L0YFqQxA10++MvJHDO6D3U/7F1g:yplq5L0HQK1HnEzFa

    Score
    8/10
    adwarepersistencestealer

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Drops desktop.ini file(s)

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks