Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-03-19...py.exe

windows7-x64

7

2024-03-19...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-19_79e93742c1d1b799ff936b4b7b613110_mafia_nionspy

  • Size

    328KB

  • Sample

    240319-d9zwrshd2z

  • MD5

    79e93742c1d1b799ff936b4b7b613110

  • SHA1

    7a63a20235987196d1674e3284b223f452517ad9

  • SHA256

    384741e58cbbbdc8673fcaf3b68493cffce3cd9cd1e48faac632d704556efa13

  • SHA512

    231975584647fe5dbc5c87758b4b86fdb74fe83910219b5ac7718d71f1d7c7c8a12e8248b2d6de9c76bcc421c2ed5c778d943c53ad2f8d90e1f2ac9d8d51a912

  • SSDEEP

    6144:t2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:t2TFafJiHCWBWPMjVWrXf1v

Score
7/10

Malware Config

Targets

    • Target

      2024-03-19_79e93742c1d1b799ff936b4b7b613110_mafia_nionspy

    • Size

      328KB

    • MD5

      79e93742c1d1b799ff936b4b7b613110

    • SHA1

      7a63a20235987196d1674e3284b223f452517ad9

    • SHA256

      384741e58cbbbdc8673fcaf3b68493cffce3cd9cd1e48faac632d704556efa13

    • SHA512

      231975584647fe5dbc5c87758b4b86fdb74fe83910219b5ac7718d71f1d7c7c8a12e8248b2d6de9c76bcc421c2ed5c778d943c53ad2f8d90e1f2ac9d8d51a912

    • SSDEEP

      6144:t2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:t2TFafJiHCWBWPMjVWrXf1v

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks