Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b25dee615bc7a7d3d4b6add2aba34aeb

  • Size

    196KB

  • Sample

    240304-rwhxzsdf24

  • MD5

    b25dee615bc7a7d3d4b6add2aba34aeb

  • SHA1

    fde5bf8accc7d146c2840e7ad2bb741a5be8f466

  • SHA256

    40b1aaf8b3c1f64414cc9887148bb2f6666a4b02a1237895936966384475ed01

  • SHA512

    f71e71199d39be917999fa24431ad72f8b840f6328fba8b09ad7e94de86c9bb6d270353ffb218339e5b111cca480dc4cea0a02833cc006b04901c9e371922635

  • SSDEEP

    3072:MWLESS6+LW9TcG98l/GQgjvhcxZI1VXrK47Ki7/aGjUNMAn4NNALvzg5G5X/w:MWLZHTI/GZLhcve1ZdzaSm1j0AP

Score
7/10

Malware Config

Targets

    • Target

      b25dee615bc7a7d3d4b6add2aba34aeb

    • Size

      196KB

    • MD5

      b25dee615bc7a7d3d4b6add2aba34aeb

    • SHA1

      fde5bf8accc7d146c2840e7ad2bb741a5be8f466

    • SHA256

      40b1aaf8b3c1f64414cc9887148bb2f6666a4b02a1237895936966384475ed01

    • SHA512

      f71e71199d39be917999fa24431ad72f8b840f6328fba8b09ad7e94de86c9bb6d270353ffb218339e5b111cca480dc4cea0a02833cc006b04901c9e371922635

    • SSDEEP

      3072:MWLESS6+LW9TcG98l/GQgjvhcxZI1VXrK47Ki7/aGjUNMAn4NNALvzg5G5X/w:MWLZHTI/GZLhcve1ZdzaSm1j0AP

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks