Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871
-
Size
216KB
-
Sample
240406-3zrj3sef9w
-
MD5
0d3f50b5a14b204527d8681dc189948e
-
SHA1
46ec71cf27c72aaace44dbd9cd04b2f5f5ea6f06
-
SHA256
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871
-
SHA512
bfccf7e169498665e251943ca74dc5da851e0e350d8a3622ddc91f8fc47425255cec84b4b61a78bebb261fcb009f4c3f718afa144c144e41fdf61c877d4890d5
-
SSDEEP
6144:39NRYNOECtrkQ5zgMZUP15HcAgonAmKfwDVaU:NNb1gMZUHcAgonAmZDV
Static task
static1
Behavioral task
behavioral1
Sample
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871
-
Size
216KB
-
MD5
0d3f50b5a14b204527d8681dc189948e
-
SHA1
46ec71cf27c72aaace44dbd9cd04b2f5f5ea6f06
-
SHA256
a2ac7d176617cec3b166b7b3ad9663f42b34f4db17fc80aa4db42f3577534871
-
SHA512
bfccf7e169498665e251943ca74dc5da851e0e350d8a3622ddc91f8fc47425255cec84b4b61a78bebb261fcb009f4c3f718afa144c144e41fdf61c877d4890d5
-
SSDEEP
6144:39NRYNOECtrkQ5zgMZUP15HcAgonAmKfwDVaU:NNb1gMZUHcAgonAmZDV
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-