Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

644dfcb89a...9e.exe

windows7-x64

9

644dfcb89a...9e.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    644dfcb89a92a67e35bd94e4665178fc0f1722e4d0719893b831f91375d7bc9e

  • Size

    539KB

  • Sample

    240305-z2gk4she4v

  • MD5

    dd8b9d16442e2b869f80ef02173213be

  • SHA1

    27e2b8f448f5a6a07f136292460029d50e6cfc9a

  • SHA256

    644dfcb89a92a67e35bd94e4665178fc0f1722e4d0719893b831f91375d7bc9e

  • SHA512

    c3484126bbd51337e593006aad1fc74d10d037f76dfe76d08675f82df1430f556d66b98f245013e5e340146d5cea74bcd779e8bedccb91fe62acd51c4d818bfa

  • SSDEEP

    3072:gCaoAs101Pol0xPTM7mRCAdJSSxPUkl3V4Vh1q+MQTCk/dN92sdNhavtrVdewnAQ:gqDAwl0xPTMiR9JSSxPUKuqododHYo

Score
10/10

Malware Config

Targets

    • Target

      644dfcb89a92a67e35bd94e4665178fc0f1722e4d0719893b831f91375d7bc9e

    • Size

      539KB

    • MD5

      dd8b9d16442e2b869f80ef02173213be

    • SHA1

      27e2b8f448f5a6a07f136292460029d50e6cfc9a

    • SHA256

      644dfcb89a92a67e35bd94e4665178fc0f1722e4d0719893b831f91375d7bc9e

    • SHA512

      c3484126bbd51337e593006aad1fc74d10d037f76dfe76d08675f82df1430f556d66b98f245013e5e340146d5cea74bcd779e8bedccb91fe62acd51c4d818bfa

    • SSDEEP

      3072:gCaoAs101Pol0xPTM7mRCAdJSSxPUkl3V4Vh1q+MQTCk/dN92sdNhavtrVdewnAQ:gqDAwl0xPTMiR9JSSxPUKuqododHYo

    Score
    9/10

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks