Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b25e76813e03d277baa7ca69e13c5473

  • Size

    192KB

  • Sample

    240304-rxea7adf49

  • MD5

    b25e76813e03d277baa7ca69e13c5473

  • SHA1

    5485214adbedb1bde21db12217895e7bc8cc47c2

  • SHA256

    a9f831837fe112c6e8fe1793e80f064e602d75d858e2b13c60bf6899c738f566

  • SHA512

    ff38e8e5ab43b2b390f6685891f911c62c6cd923ef6be66dd18214bb1ca04b9069c2cf59ba7af750d0e2737cefe974cbe5d4be4ca7eab5ad17835117aa8d7745

  • SSDEEP

    3072:HwBJejh+RH5UL1iUG3KgKLKRKoVqR5VxerayK/fObT/bGicFgvXb6jGJBXX:HwBJQcRZSgKgKLKRKoVqRTxEpK/fObTR

Score
10/10

Malware Config

Targets

    • Target

      b25e76813e03d277baa7ca69e13c5473

    • Size

      192KB

    • MD5

      b25e76813e03d277baa7ca69e13c5473

    • SHA1

      5485214adbedb1bde21db12217895e7bc8cc47c2

    • SHA256

      a9f831837fe112c6e8fe1793e80f064e602d75d858e2b13c60bf6899c738f566

    • SHA512

      ff38e8e5ab43b2b390f6685891f911c62c6cd923ef6be66dd18214bb1ca04b9069c2cf59ba7af750d0e2737cefe974cbe5d4be4ca7eab5ad17835117aa8d7745

    • SSDEEP

      3072:HwBJejh+RH5UL1iUG3KgKLKRKoVqR5VxerayK/fObT/bGicFgvXb6jGJBXX:HwBJQcRZSgKgKLKRKoVqRTxEpK/fObTR

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks