Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b25dee615bc7a7d3d4b6add2aba34aeb
-
Size
196KB
-
Sample
240304-rwhxzsdf24
-
MD5
b25dee615bc7a7d3d4b6add2aba34aeb
-
SHA1
fde5bf8accc7d146c2840e7ad2bb741a5be8f466
-
SHA256
40b1aaf8b3c1f64414cc9887148bb2f6666a4b02a1237895936966384475ed01
-
SHA512
f71e71199d39be917999fa24431ad72f8b840f6328fba8b09ad7e94de86c9bb6d270353ffb218339e5b111cca480dc4cea0a02833cc006b04901c9e371922635
-
SSDEEP
3072:MWLESS6+LW9TcG98l/GQgjvhcxZI1VXrK47Ki7/aGjUNMAn4NNALvzg5G5X/w:MWLZHTI/GZLhcve1ZdzaSm1j0AP
Static task
static1
Behavioral task
behavioral1
Sample
b25dee615bc7a7d3d4b6add2aba34aeb.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b25dee615bc7a7d3d4b6add2aba34aeb.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b25dee615bc7a7d3d4b6add2aba34aeb
-
Size
196KB
-
MD5
b25dee615bc7a7d3d4b6add2aba34aeb
-
SHA1
fde5bf8accc7d146c2840e7ad2bb741a5be8f466
-
SHA256
40b1aaf8b3c1f64414cc9887148bb2f6666a4b02a1237895936966384475ed01
-
SHA512
f71e71199d39be917999fa24431ad72f8b840f6328fba8b09ad7e94de86c9bb6d270353ffb218339e5b111cca480dc4cea0a02833cc006b04901c9e371922635
-
SSDEEP
3072:MWLESS6+LW9TcG98l/GQgjvhcxZI1VXrK47Ki7/aGjUNMAn4NNALvzg5G5X/w:MWLZHTI/GZLhcve1ZdzaSm1j0AP
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-