Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
RN# D7521-RN-00353 REV-2.r01.bat.exe
-
Size
1.3MB
-
Sample
240315-j2sqdadf79
-
MD5
b79f8e8988671babf42813f1d53bbf42
-
SHA1
a0be0feee0a36b8bbb31cb1f052f23685b4109d9
-
SHA256
2b41b5d43e8e94876524024511f67b6402a1b6e468edbbf9f11280b54b4c9898
-
SHA512
bef3116903d0f2f51c694b86eaac15721ba2fa4e9f9c5235ddad20ce8334424e1622fc1c8f16152c743976663088dfda5e951b3ceab92abc959e8945aca1ce6c
-
SSDEEP
24576:pl6JEwIomd18LHg+SB6yfyFw1WxOn2WYevdTDbn0oSEqgoz7305pdWcZxm:pl6JEwpmd18LHOtyFwIHWhvdTDbn0oSD
Static task
static1
Behavioral task
behavioral1
Sample
RN# D7521-RN-00353 REV-2.r01.bat.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
RN# D7521-RN-00353 REV-2.r01.bat.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
RN# D7521-RN-00353 REV-2.r01.bat.exe
-
Size
1.3MB
-
MD5
b79f8e8988671babf42813f1d53bbf42
-
SHA1
a0be0feee0a36b8bbb31cb1f052f23685b4109d9
-
SHA256
2b41b5d43e8e94876524024511f67b6402a1b6e468edbbf9f11280b54b4c9898
-
SHA512
bef3116903d0f2f51c694b86eaac15721ba2fa4e9f9c5235ddad20ce8334424e1622fc1c8f16152c743976663088dfda5e951b3ceab92abc959e8945aca1ce6c
-
SSDEEP
24576:pl6JEwIomd18LHg+SB6yfyFw1WxOn2WYevdTDbn0oSEqgoz7305pdWcZxm:pl6JEwpmd18LHOtyFwIHWhvdTDbn0oSD
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Suspicious use of SetThreadContext
-