Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ccbb5355b566c47ea3cc7acfd4b9fc8b

  • Size

    276KB

  • Sample

    240316-blzjzshh68

  • MD5

    ccbb5355b566c47ea3cc7acfd4b9fc8b

  • SHA1

    0490fc88853a15155b599e4d38c96bc25c57f92d

  • SHA256

    cb3557a20c6c5dd7bd87a2e4082b8d9c409ab11d22b13fcc3d20684fef6f3e19

  • SHA512

    fc227b1a7868a4e141c5af8dc5943e28103f7b22bd42dc7e40f092e10e203aae87e5077a9fc4756a56f13842a10df3db38edc85300a00a62b3134c0342cefaa0

  • SSDEEP

    3072:v15YY60+0cJB/JO08G/u15G15S15S15YY60+0cJB/JO08G/M:t5G5BHM5U54545G5BHM

Score
8/10
upx

Malware Config

Targets

    • Target

      ccbb5355b566c47ea3cc7acfd4b9fc8b

    • Size

      276KB

    • MD5

      ccbb5355b566c47ea3cc7acfd4b9fc8b

    • SHA1

      0490fc88853a15155b599e4d38c96bc25c57f92d

    • SHA256

      cb3557a20c6c5dd7bd87a2e4082b8d9c409ab11d22b13fcc3d20684fef6f3e19

    • SHA512

      fc227b1a7868a4e141c5af8dc5943e28103f7b22bd42dc7e40f092e10e203aae87e5077a9fc4756a56f13842a10df3db38edc85300a00a62b3134c0342cefaa0

    • SSDEEP

      3072:v15YY60+0cJB/JO08G/u15G15S15S15YY60+0cJB/JO08G/M:t5G5BHM5U54545G5BHM

    Score
    8/10
    • Drops file in Drivers directory

    • Manipulates Digital Signatures

      Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks