Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b25e76813e03d277baa7ca69e13c5473
-
Size
192KB
-
Sample
240304-rxea7adf49
-
MD5
b25e76813e03d277baa7ca69e13c5473
-
SHA1
5485214adbedb1bde21db12217895e7bc8cc47c2
-
SHA256
a9f831837fe112c6e8fe1793e80f064e602d75d858e2b13c60bf6899c738f566
-
SHA512
ff38e8e5ab43b2b390f6685891f911c62c6cd923ef6be66dd18214bb1ca04b9069c2cf59ba7af750d0e2737cefe974cbe5d4be4ca7eab5ad17835117aa8d7745
-
SSDEEP
3072:HwBJejh+RH5UL1iUG3KgKLKRKoVqR5VxerayK/fObT/bGicFgvXb6jGJBXX:HwBJQcRZSgKgKLKRKoVqRTxEpK/fObTR
Static task
static1
Behavioral task
behavioral1
Sample
b25e76813e03d277baa7ca69e13c5473.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
b25e76813e03d277baa7ca69e13c5473.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b25e76813e03d277baa7ca69e13c5473
-
Size
192KB
-
MD5
b25e76813e03d277baa7ca69e13c5473
-
SHA1
5485214adbedb1bde21db12217895e7bc8cc47c2
-
SHA256
a9f831837fe112c6e8fe1793e80f064e602d75d858e2b13c60bf6899c738f566
-
SHA512
ff38e8e5ab43b2b390f6685891f911c62c6cd923ef6be66dd18214bb1ca04b9069c2cf59ba7af750d0e2737cefe974cbe5d4be4ca7eab5ad17835117aa8d7745
-
SSDEEP
3072:HwBJejh+RH5UL1iUG3KgKLKRKoVqR5VxerayK/fObT/bGicFgvXb6jGJBXX:HwBJQcRZSgKgKLKRKoVqRTxEpK/fObTR
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-