Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ced58d1a8722e1c8fbc56e179d8dd5d9ee7a98ebfcbd0786c35989988d494829

  • Size

    8.7MB

  • Sample

    240306-c366tsac64

  • MD5

    2e25ea50465851a13a424f19581a78bf

  • SHA1

    284b10868259437d53c7fab6d6038dbc54bd077e

  • SHA256

    ced58d1a8722e1c8fbc56e179d8dd5d9ee7a98ebfcbd0786c35989988d494829

  • SHA512

    f8ea20dc04fe0c4f4259b8b73c060cbd916981a0d10810bc58cc5fdec7d51d17dfb07924a38db588f459d266ae76c3d221cc2a26dcdc0135d36c185eabdda21e

  • SSDEEP

    98304:dECMnttickNYDhDADjgExO14egIc9vzErbGxI/1R:dNckNYDC4xvD1R

Malware Config

Targets

    • Target

      ced58d1a8722e1c8fbc56e179d8dd5d9ee7a98ebfcbd0786c35989988d494829

    • Size

      8.7MB

    • MD5

      2e25ea50465851a13a424f19581a78bf

    • SHA1

      284b10868259437d53c7fab6d6038dbc54bd077e

    • SHA256

      ced58d1a8722e1c8fbc56e179d8dd5d9ee7a98ebfcbd0786c35989988d494829

    • SHA512

      f8ea20dc04fe0c4f4259b8b73c060cbd916981a0d10810bc58cc5fdec7d51d17dfb07924a38db588f459d266ae76c3d221cc2a26dcdc0135d36c185eabdda21e

    • SSDEEP

      98304:dECMnttickNYDhDADjgExO14egIc9vzErbGxI/1R:dNckNYDC4xvD1R

    • Downloads MZ/PE file

    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks