Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c86fc119bac0f770ccbc16a084834473

  • Size

    308KB

  • Sample

    240314-mwcnraaa7s

  • MD5

    c86fc119bac0f770ccbc16a084834473

  • SHA1

    2085ee03c7a019660b31a6eb0cabe820b586da4e

  • SHA256

    01aa4f2ae47d829d0f2aa30de279c6ff4f8db80f25e382c4155b2594dc734fe4

  • SHA512

    def54269961bf7c3c562632fb730784f477ac2395a14031381cf928ef23fed56994aba521330e57ee41d6c23b998a7eda2ddf2b96245c956704b91628f712a61

  • SSDEEP

    6144:yfD6q+3voIF2b3P5j+xaw4IjP1FPoE58oqfHDX7TgFE9yQ7hb:rp3vEkxzv71wX7TwE9b

Malware Config

Targets

    • Target

      c86fc119bac0f770ccbc16a084834473

    • Size

      308KB

    • MD5

      c86fc119bac0f770ccbc16a084834473

    • SHA1

      2085ee03c7a019660b31a6eb0cabe820b586da4e

    • SHA256

      01aa4f2ae47d829d0f2aa30de279c6ff4f8db80f25e382c4155b2594dc734fe4

    • SHA512

      def54269961bf7c3c562632fb730784f477ac2395a14031381cf928ef23fed56994aba521330e57ee41d6c23b998a7eda2ddf2b96245c956704b91628f712a61

    • SSDEEP

      6144:yfD6q+3voIF2b3P5j+xaw4IjP1FPoE58oqfHDX7TgFE9yQ7hb:rp3vEkxzv71wX7TwE9b

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks