Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6816d005c5d53474be352ed1194780778709f228e78743e3b708c9491f5f7950

  • Size

    304KB

  • Sample

    240406-1rkepaca8z

  • MD5

    53140b42aaad2d1a83dfe02505ffe69e

  • SHA1

    9ac4a727ea2566a40d9f12261a745686d969f0a2

  • SHA256

    6816d005c5d53474be352ed1194780778709f228e78743e3b708c9491f5f7950

  • SHA512

    8fab8febe9caffa48b2dd1ddc8bbaeb9dda0674cd9592048e9bd7ddcfd2e96d7ec8bfe793714e561dc2adda2d45238fd81d94d3021a253cf9e1ba0efeaff6035

  • SSDEEP

    3072:VPGOaEaAaTG0kZSmA2Cjxqc+53NMop2aEaLFra+7pvPSvB47:W4A5N2NylaRSm

Score
10/10

Malware Config

Targets

    • Target

      6816d005c5d53474be352ed1194780778709f228e78743e3b708c9491f5f7950

    • Size

      304KB

    • MD5

      53140b42aaad2d1a83dfe02505ffe69e

    • SHA1

      9ac4a727ea2566a40d9f12261a745686d969f0a2

    • SHA256

      6816d005c5d53474be352ed1194780778709f228e78743e3b708c9491f5f7950

    • SHA512

      8fab8febe9caffa48b2dd1ddc8bbaeb9dda0674cd9592048e9bd7ddcfd2e96d7ec8bfe793714e561dc2adda2d45238fd81d94d3021a253cf9e1ba0efeaff6035

    • SSDEEP

      3072:VPGOaEaAaTG0kZSmA2Cjxqc+53NMop2aEaLFra+7pvPSvB47:W4A5N2NylaRSm

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks