Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b5e5602f5d...f8.exe

windows7-x64

7

b5e5602f5d...f8.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b5e5602f5d31013cf079f27284fe33f8

  • Size

    3.4MB

  • Sample

    240305-26f69adb94

  • MD5

    b5e5602f5d31013cf079f27284fe33f8

  • SHA1

    3469fb7cb8a9525d2e6762e80986c86f1d0aba63

  • SHA256

    cfc4a9c88dfd582a9146ffcac40af898755d7fcb372aaaade5627fa09ad9b497

  • SHA512

    ba7e38cfc426622d5a9bac11770f38f4cbd9140cbe62143ea442ba4a011900f10357484eebc3e3a6bc4c9ef094928b02d8b9a754f1f684a0f1c8be397aad718b

  • SSDEEP

    49152:P5RVdJK4h+ZXuGOwg8S1WCfftlBO6XwhO+yAWZTSEFeodqN/i4fWxEXqBB:84h+Z+GOwiWCffJO42O/1FexK3B

Score
8/10

Malware Config

Targets

    • Target

      b5e5602f5d31013cf079f27284fe33f8

    • Size

      3.4MB

    • MD5

      b5e5602f5d31013cf079f27284fe33f8

    • SHA1

      3469fb7cb8a9525d2e6762e80986c86f1d0aba63

    • SHA256

      cfc4a9c88dfd582a9146ffcac40af898755d7fcb372aaaade5627fa09ad9b497

    • SHA512

      ba7e38cfc426622d5a9bac11770f38f4cbd9140cbe62143ea442ba4a011900f10357484eebc3e3a6bc4c9ef094928b02d8b9a754f1f684a0f1c8be397aad718b

    • SSDEEP

      49152:P5RVdJK4h+ZXuGOwg8S1WCfftlBO6XwhO+yAWZTSEFeodqN/i4fWxEXqBB:84h+Z+GOwiWCffJO42O/1FexK3B

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks