Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    SecuriteInfo.com.Win32.PWSX-gen.260.6578.exe

  • Size

    671KB

  • Sample

    240319-qq8e1sdh8s

  • MD5

    fe2a1da4eebfe9515ef64e0849da543e

  • SHA1

    f5b3b907650b61c928b564ce554faefae9a22f3d

  • SHA256

    80bf4a9fa656711ecb841491d70fb6cb3696e6b23eae176c904489a382e66a87

  • SHA512

    315a872993da718cc84b97359ac234a136b4c5e83a4527914e98d4d4edb6480e19980d070d81689394afbc70322c7feac409361073f52d621eb1f8cd70cfd09f

  • SSDEEP

    12288:nlPloOJRYWqV5IdIZmkt5Kxe66qRUgd0AgvGNS8W9E/r2tb/vsrz9F3Y1mLt+l:l9oOJb9dIZmknH61RUgdHgG08WWWXs7m

Score
7/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win32.PWSX-gen.260.6578.exe

    • Size

      671KB

    • MD5

      fe2a1da4eebfe9515ef64e0849da543e

    • SHA1

      f5b3b907650b61c928b564ce554faefae9a22f3d

    • SHA256

      80bf4a9fa656711ecb841491d70fb6cb3696e6b23eae176c904489a382e66a87

    • SHA512

      315a872993da718cc84b97359ac234a136b4c5e83a4527914e98d4d4edb6480e19980d070d81689394afbc70322c7feac409361073f52d621eb1f8cd70cfd09f

    • SSDEEP

      12288:nlPloOJRYWqV5IdIZmkt5Kxe66qRUgd0AgvGNS8W9E/r2tb/vsrz9F3Y1mLt+l:l9oOJb9dIZmknH61RUgdHgG08WWWXs7m

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks