Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

23/02/2024, 15:14

240223-smc6tabh28 7

23/02/2024, 15:12

240223-slfkjscg6w 7

23/02/2024, 15:03

240223-sfh4gsbf66 7

General

  • Target

    New Client.exe

  • Size

    396KB

  • Sample

    240223-sfh4gsbf66

  • MD5

    9b5f12b10b471e0a359bc11e50af28db

  • SHA1

    5e42890b6b4a299cd954bf8dabaf75b38522c0b0

  • SHA256

    af34b699b6aa750e58a68516b97b4f8c2f08bd03453a6059f6869847cc63a7bf

  • SHA512

    1fbf71b9121cb141a617a2e14e466fead22da7cc7c672a8e5f79cab929e10a4f578edba06e8340d40d23f51852b33816a67351b6cecf5a5f72410c1bc0d5b773

  • SSDEEP

    12288:+WSeotlIH682B+64kQHam2dNREz9FdOZMJwGuE4QyZom8exsrPR5TE7D0XuDTT:+WSmpL

Score
7/10

Malware Config

Targets

    • Target

      New Client.exe

    • Size

      396KB

    • MD5

      9b5f12b10b471e0a359bc11e50af28db

    • SHA1

      5e42890b6b4a299cd954bf8dabaf75b38522c0b0

    • SHA256

      af34b699b6aa750e58a68516b97b4f8c2f08bd03453a6059f6869847cc63a7bf

    • SHA512

      1fbf71b9121cb141a617a2e14e466fead22da7cc7c672a8e5f79cab929e10a4f578edba06e8340d40d23f51852b33816a67351b6cecf5a5f72410c1bc0d5b773

    • SSDEEP

      12288:+WSeotlIH682B+64kQHam2dNREz9FdOZMJwGuE4QyZom8exsrPR5TE7D0XuDTT:+WSmpL

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks