Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ac0b3356655f8495fdc17d97802aaf31

  • Size

    224KB

  • Sample

    240228-q8alpsdc5w

  • MD5

    ac0b3356655f8495fdc17d97802aaf31

  • SHA1

    cf6d831f812666485612ac85c2649658454d731d

  • SHA256

    7921ea0672bb1ab083fbbc18b2487e57d91edc93d09162457700714e5fb52084

  • SHA512

    d2fa88c998c41c6ee126d0d3f3a1ae19c34d97b01af1f84d4eb928caa464299b429f19ae42dfeca7fa3e4118ba1a52dcb6fc74de940c16b2b7d0b56069967740

  • SSDEEP

    3072:z+dXwfjdGl5nf1pmylYKmanlVl/vuxlil5iA6SfMhLgTVBJvna+dXwVSnE3:z+yfQ5nlliqlVJ7fiA6qsgT5a+yVCE3

Score
8/10
upx

Malware Config

Targets

    • Target

      ac0b3356655f8495fdc17d97802aaf31

    • Size

      224KB

    • MD5

      ac0b3356655f8495fdc17d97802aaf31

    • SHA1

      cf6d831f812666485612ac85c2649658454d731d

    • SHA256

      7921ea0672bb1ab083fbbc18b2487e57d91edc93d09162457700714e5fb52084

    • SHA512

      d2fa88c998c41c6ee126d0d3f3a1ae19c34d97b01af1f84d4eb928caa464299b429f19ae42dfeca7fa3e4118ba1a52dcb6fc74de940c16b2b7d0b56069967740

    • SSDEEP

      3072:z+dXwfjdGl5nf1pmylYKmanlVl/vuxlil5iA6SfMhLgTVBJvna+dXwVSnE3:z+yfQ5nlliqlVJ7fiA6qsgT5a+yVCE3

    Score
    8/10
    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks