Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-02-25...py.exe

windows7-x64

7

2024-02-25...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-25_bcc4055ea38c9fc5353359c6aa35b38b_mafia_nionspy

  • Size

    280KB

  • Sample

    240225-grj95sea7v

  • MD5

    bcc4055ea38c9fc5353359c6aa35b38b

  • SHA1

    4d9d4f74f0d971334476d3fc17a02293855f0bc6

  • SHA256

    52d340475238a6f64cec9c0873733884147151293295bdaafc423c2ed855353c

  • SHA512

    f399f1f5372a1ccc0583be4b8b50a3cee3b40f6dd9f31e82cff996241323909a49bca689ecb63c4e2dbec4e6fdb6bca5b3e6e092abc03cc3dd53278664dd9e48

  • SSDEEP

    6144:oTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:oTBPFV0RyWl3h2E+7pl

Score
7/10

Malware Config

Targets

    • Target

      2024-02-25_bcc4055ea38c9fc5353359c6aa35b38b_mafia_nionspy

    • Size

      280KB

    • MD5

      bcc4055ea38c9fc5353359c6aa35b38b

    • SHA1

      4d9d4f74f0d971334476d3fc17a02293855f0bc6

    • SHA256

      52d340475238a6f64cec9c0873733884147151293295bdaafc423c2ed855353c

    • SHA512

      f399f1f5372a1ccc0583be4b8b50a3cee3b40f6dd9f31e82cff996241323909a49bca689ecb63c4e2dbec4e6fdb6bca5b3e6e092abc03cc3dd53278664dd9e48

    • SSDEEP

      6144:oTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:oTBPFV0RyWl3h2E+7pl

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks