Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

abc15af400...99.exe

windows7-x64

7

abc15af400...99.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abc15af4008e8832a0a6cc6c90bf1599

  • Size

    724KB

  • Sample

    240228-nedp6aac22

  • MD5

    abc15af4008e8832a0a6cc6c90bf1599

  • SHA1

    66ccce6161849dd40d20bf1b5b30f2ee4cd74bd2

  • SHA256

    9b2b1e301bed2e080fb835aece6d2644b1ca3b5b673b34617bc6c0f378307d5a

  • SHA512

    faf4ba5cf6f5782b9b4dea6e2320ef6dfc207c011682f03b90a3430b43844c18ca3b2634ff040783f7575f065794284968185d86639dec48c3fac3febf10a872

  • SSDEEP

    12288:uxHjL99LsEONTlqagN59/2MzTcDYOtygo2ZJTaR6fHl6vKP2rUi6K6aKUUifD0:aL99wBTlqagH12OcDYOogo23WR6fJPSK

Score
7/10

Malware Config

Targets

    • Target

      abc15af4008e8832a0a6cc6c90bf1599

    • Size

      724KB

    • MD5

      abc15af4008e8832a0a6cc6c90bf1599

    • SHA1

      66ccce6161849dd40d20bf1b5b30f2ee4cd74bd2

    • SHA256

      9b2b1e301bed2e080fb835aece6d2644b1ca3b5b673b34617bc6c0f378307d5a

    • SHA512

      faf4ba5cf6f5782b9b4dea6e2320ef6dfc207c011682f03b90a3430b43844c18ca3b2634ff040783f7575f065794284968185d86639dec48c3fac3febf10a872

    • SSDEEP

      12288:uxHjL99LsEONTlqagN59/2MzTcDYOtygo2ZJTaR6fHl6vKP2rUi6K6aKUUifD0:aL99wBTlqagH12OcDYOogo23WR6fJPSK

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks