Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9f1d74e5d35b059dbcd67d56289c9f5ce8a37e8cee96e9b159dfb93ae4835e17

  • Size

    88KB

  • Sample

    240406-3vqrzsee8z

  • MD5

    1dbc4abba8022924c5b8b86a145c596e

  • SHA1

    a2625fbed8a132194ad169db29322a058ed7556f

  • SHA256

    9f1d74e5d35b059dbcd67d56289c9f5ce8a37e8cee96e9b159dfb93ae4835e17

  • SHA512

    bd5902390a80d4fc1625edcd755078f64c83965f1db32741846a2afb08dc32713e53ad1b5d2be4fde8ac4137363b46f90edd010a41ae3d1165190977e8091d78

  • SSDEEP

    768:spb6o5zVdnURLQ/JD60XDeVtA5YxmHwWW2iYf/ce2NZQcy8+gxdCwaTDNmDIBT//:sJjIQ/JDHKa5LJW6/Z2NZQKvdmNmS/

Score
10/10

Malware Config

Targets

    • Target

      9f1d74e5d35b059dbcd67d56289c9f5ce8a37e8cee96e9b159dfb93ae4835e17

    • Size

      88KB

    • MD5

      1dbc4abba8022924c5b8b86a145c596e

    • SHA1

      a2625fbed8a132194ad169db29322a058ed7556f

    • SHA256

      9f1d74e5d35b059dbcd67d56289c9f5ce8a37e8cee96e9b159dfb93ae4835e17

    • SHA512

      bd5902390a80d4fc1625edcd755078f64c83965f1db32741846a2afb08dc32713e53ad1b5d2be4fde8ac4137363b46f90edd010a41ae3d1165190977e8091d78

    • SSDEEP

      768:spb6o5zVdnURLQ/JD60XDeVtA5YxmHwWW2iYf/ce2NZQcy8+gxdCwaTDNmDIBT//:sJjIQ/JDHKa5LJW6/Z2NZQKvdmNmS/

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks