Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

f4570a3e1a...f9.exe

windows7-x64

9

f4570a3e1a...f9.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f4570a3e1ae9fb5307f321983c446d9bbef183de59726bd11be5440e6faf25f9

  • Size

    161KB

  • Sample

    240311-cdhryahg61

  • MD5

    f44f1d6941436fe095bef7425f850335

  • SHA1

    e442ae7623976fbc3b8bcd1118cdf9bd3ec2d6a3

  • SHA256

    f4570a3e1ae9fb5307f321983c446d9bbef183de59726bd11be5440e6faf25f9

  • SHA512

    afd084d03ea732dda2a331e4ffd5cbdbed6181649c520cd2a9b9522033eeaf4722b680ac920a666281f8ce6cd20c33aa6f36646e944b8b050973be544a3b850a

  • SSDEEP

    3072:qv5Ls27BIJo7LyXuM/XXXdwVBXXXhYfjCXXXDrXXXDKXXXmfXXXxXXXLIIIBoqfm:qBs27V7LyXf/XXX2VBXXXefjCXXXDrXf

Score
10/10

Malware Config

Targets

    • Target

      f4570a3e1ae9fb5307f321983c446d9bbef183de59726bd11be5440e6faf25f9

    • Size

      161KB

    • MD5

      f44f1d6941436fe095bef7425f850335

    • SHA1

      e442ae7623976fbc3b8bcd1118cdf9bd3ec2d6a3

    • SHA256

      f4570a3e1ae9fb5307f321983c446d9bbef183de59726bd11be5440e6faf25f9

    • SHA512

      afd084d03ea732dda2a331e4ffd5cbdbed6181649c520cd2a9b9522033eeaf4722b680ac920a666281f8ce6cd20c33aa6f36646e944b8b050973be544a3b850a

    • SSDEEP

      3072:qv5Ls27BIJo7LyXuM/XXXdwVBXXXhYfjCXXXDrXXXDKXXXmfXXXxXXXLIIIBoqfm:qBs27V7LyXf/XXX2VBXXXefjCXXXDrXf

    Score
    9/10

    • Detects Windows executables referencing non-Windows User-Agents

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks