Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e18de2b27a663f6846214ec173831bf1

  • Size

    48KB

  • Sample

    240327-nkrtzaeb8x

  • MD5

    e18de2b27a663f6846214ec173831bf1

  • SHA1

    c82de45993410c366d42e736ec677b3652531d14

  • SHA256

    c6eb261246006172d4747f446bc0b0bec89e9a0b620599834ab5d4b75b43d0e3

  • SHA512

    b583c766698835ffa34294d13801fb1444095170817a6e03cdabb0b1283d9e913eb982419d6c078da675c98404f8e40f9ccca7b8af7d98ec71c8ed0ba8c1ea4d

  • SSDEEP

    1536:s2fRz+rGYkk7whkhLEKjQ7HKF7f88P/y4:skz+rGYRwmEGQ7HKF7BPq

Score
7/10
upx

Malware Config

Targets

    • Target

      e18de2b27a663f6846214ec173831bf1

    • Size

      48KB

    • MD5

      e18de2b27a663f6846214ec173831bf1

    • SHA1

      c82de45993410c366d42e736ec677b3652531d14

    • SHA256

      c6eb261246006172d4747f446bc0b0bec89e9a0b620599834ab5d4b75b43d0e3

    • SHA512

      b583c766698835ffa34294d13801fb1444095170817a6e03cdabb0b1283d9e913eb982419d6c078da675c98404f8e40f9ccca7b8af7d98ec71c8ed0ba8c1ea4d

    • SSDEEP

      1536:s2fRz+rGYkk7whkhLEKjQ7HKF7f88P/y4:skz+rGYRwmEGQ7HKF7BPq

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks