Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

paint.net....eb.exe

windows7-x64

7

paint.net....eb.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    paint.net.5.0.13.install.anycpu.web.exe

  • Size

    1.1MB

  • Sample

    240313-zql2fsge9x

  • MD5

    9e8c911802a8f387d536a340f39b2636

  • SHA1

    85074c4e1574de523596950d33aa10fa27813813

  • SHA256

    289df7d7b2f0da4de90cf66ee44d60162fdb65e8f36744f724009d5879925d27

  • SHA512

    430e8fe20916fa9f8a2bec1f2d4d85ca555fae3c6e08622d8c4f36cb9c513beec51dca094acaf560bd5eb32a6a56753fd3594b7be92c9b89786290b1e122a9b3

  • SSDEEP

    24576:/PYYYYkeBVMCOVI3YofBJT6F18BzgjIMbaF:/PYYYYksMCOVI9BJTSe8jnGF

Score
7/10

Malware Config

Targets

    • Target

      paint.net.5.0.13.install.anycpu.web.exe

    • Size

      1.1MB

    • MD5

      9e8c911802a8f387d536a340f39b2636

    • SHA1

      85074c4e1574de523596950d33aa10fa27813813

    • SHA256

      289df7d7b2f0da4de90cf66ee44d60162fdb65e8f36744f724009d5879925d27

    • SHA512

      430e8fe20916fa9f8a2bec1f2d4d85ca555fae3c6e08622d8c4f36cb9c513beec51dca094acaf560bd5eb32a6a56753fd3594b7be92c9b89786290b1e122a9b3

    • SSDEEP

      24576:/PYYYYkeBVMCOVI3YofBJT6F18BzgjIMbaF:/PYYYYksMCOVI9BJTSe8jnGF

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks