Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    DE_OfficeStandard2019_VL_64_BIT.exe

  • Size

    1.8MB

  • Sample

    240225-pyqz9sbg38

  • MD5

    dca0494688e1aa30bdc13716c58c92aa

  • SHA1

    9b41c5d7f67ed0cd32cb1de5547496d79d8843b3

  • SHA256

    036e41576e0c68e013114efc479bee0e5b9094c6e6260abc9f0bb24a497bb86b

  • SHA512

    1f2bc26a94133691499e0c448df6ca2bc08c30e112688ea95e1daf43c80e24aa36b8fa5e7fe50195c7f1a94ea151c7076cc35922cc88c7b3dac534fbc02cd4c1

  • SSDEEP

    49152:b8Scmhb6Y4OjhHcH1BRZUSwZBLvWmc9sAR3Shs:b8BY1q17ZHQJvY1Rp

Score
7/10

Malware Config

Targets

    • Target

      DE_OfficeStandard2019_VL_64_BIT.exe

    • Size

      1.8MB

    • MD5

      dca0494688e1aa30bdc13716c58c92aa

    • SHA1

      9b41c5d7f67ed0cd32cb1de5547496d79d8843b3

    • SHA256

      036e41576e0c68e013114efc479bee0e5b9094c6e6260abc9f0bb24a497bb86b

    • SHA512

      1f2bc26a94133691499e0c448df6ca2bc08c30e112688ea95e1daf43c80e24aa36b8fa5e7fe50195c7f1a94ea151c7076cc35922cc88c7b3dac534fbc02cd4c1

    • SSDEEP

      49152:b8Scmhb6Y4OjhHcH1BRZUSwZBLvWmc9sAR3Shs:b8BY1q17ZHQJvY1Rp

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks