Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

OfficeSetup.exe

windows7-x64

7

OfficeSetup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OfficeSetup.exe

  • Size

    7.1MB

  • Sample

    240325-nzpyxshg3y

  • MD5

    776521fe89ae58ca5bad5881eb95d70d

  • SHA1

    92a2c322651fcc44510b81d72d2fc8138d71d839

  • SHA256

    66d8a0c3eba5f092d2d4fb040510d9fdf8315a8604b89d3f351d9aaa3ae0ef14

  • SHA512

    60084e621c1513e9d02b2dea6940716cf8e734e24ab4a890003b37ff3fd4dff0bd03579e9f4dc4631b3209dabb0b43c479f0c10fe89d4cfa8cc3a82a70a03f18

  • SSDEEP

    196608:j9Ttw0E4FuZRD/wpWRnDIorJvuhZ8jqRUpmKTz:jXw0mRMWhDIoN4RUpmK3

Score
7/10
discovery

Malware Config

Targets

    • Target

      OfficeSetup.exe

    • Size

      7.1MB

    • MD5

      776521fe89ae58ca5bad5881eb95d70d

    • SHA1

      92a2c322651fcc44510b81d72d2fc8138d71d839

    • SHA256

      66d8a0c3eba5f092d2d4fb040510d9fdf8315a8604b89d3f351d9aaa3ae0ef14

    • SHA512

      60084e621c1513e9d02b2dea6940716cf8e734e24ab4a890003b37ff3fd4dff0bd03579e9f4dc4631b3209dabb0b43c479f0c10fe89d4cfa8cc3a82a70a03f18

    • SSDEEP

      196608:j9Ttw0E4FuZRD/wpWRnDIorJvuhZ8jqRUpmKTz:jXw0mRMWhDIoN4RUpmK3

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks