Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b6ddaedbe8...37.exe

windows7-x64

8

b6ddaedbe8...37.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b6ddaedbe89ed3721a759d36b4458037

  • Size

    24KB

  • Sample

    240306-jedypseb61

  • MD5

    b6ddaedbe89ed3721a759d36b4458037

  • SHA1

    1b9dc20b35fc43af5a9cb01d197604713cac5110

  • SHA256

    8720e91f2f4c8b8c4d9e9163fedb50252920bed3fec48b23416c2236ac09659f

  • SHA512

    52fbe3d11a23596bc09897ffeb74d333d8a7f17a863180642849073f9852b449e5763933451be89dfe67338694fc79582887891167cad524d2bc65245fc5ea06

  • SSDEEP

    384:4l8q7E2vDsnwe6qyGPHK7pgymJu7UzFI1PuwNC7GjIP5jaTiJ6OSV:4Wq7E2FnqZWgTr+Gw1cZaTicO+

Score
8/10
persistence

Malware Config

Targets

    • Target

      b6ddaedbe89ed3721a759d36b4458037

    • Size

      24KB

    • MD5

      b6ddaedbe89ed3721a759d36b4458037

    • SHA1

      1b9dc20b35fc43af5a9cb01d197604713cac5110

    • SHA256

      8720e91f2f4c8b8c4d9e9163fedb50252920bed3fec48b23416c2236ac09659f

    • SHA512

      52fbe3d11a23596bc09897ffeb74d333d8a7f17a863180642849073f9852b449e5763933451be89dfe67338694fc79582887891167cad524d2bc65245fc5ea06

    • SSDEEP

      384:4l8q7E2vDsnwe6qyGPHK7pgymJu7UzFI1PuwNC7GjIP5jaTiJ6OSV:4Wq7E2FnqZWgTr+Gw1cZaTicO+

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks