Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a14985182f...66.exe

windows7-x64

8

a14985182f...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a14985182fcd6d0aff13c375c15d5566

  • Size

    268KB

  • Sample

    240224-jacj3sdc26

  • MD5

    a14985182fcd6d0aff13c375c15d5566

  • SHA1

    b11f615163e71e623273cc456559c15009cce6cc

  • SHA256

    a9a0b49c1d3b073a04f6f7cb74c688c9ef5de9ef1dbfbd8e0f2da8b90031be45

  • SHA512

    70425cca4b7525f0ed930cee582f641b560bf0c6d8cb2bc8340f9be5f2b3834669a62409ba4dba34ca6fa1819845aa2da2c2115ab62975580d795018c8f4919a

  • SSDEEP

    3072:Bskvo5NHSuErdFqOgzletQj7ExJcSlrtpihGKAOdDI/eVpcLet0v9X3yiZgftJih:oyucGZeQ4kSl5piN5Jp6dreQWdb

Score
8/10
persistence

Malware Config

Targets

    • Target

      a14985182fcd6d0aff13c375c15d5566

    • Size

      268KB

    • MD5

      a14985182fcd6d0aff13c375c15d5566

    • SHA1

      b11f615163e71e623273cc456559c15009cce6cc

    • SHA256

      a9a0b49c1d3b073a04f6f7cb74c688c9ef5de9ef1dbfbd8e0f2da8b90031be45

    • SHA512

      70425cca4b7525f0ed930cee582f641b560bf0c6d8cb2bc8340f9be5f2b3834669a62409ba4dba34ca6fa1819845aa2da2c2115ab62975580d795018c8f4919a

    • SSDEEP

      3072:Bskvo5NHSuErdFqOgzletQj7ExJcSlrtpihGKAOdDI/eVpcLet0v9X3yiZgftJih:oyucGZeQ4kSl5piN5Jp6dreQWdb

    Score
    8/10
    persistence

    • Modifies AppInit DLL entries

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks