Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    03f6433dda33a3950c2c6d12b9544be8c04431cd6b269badb858bfedf6687330

  • Size

    312KB

  • Sample

    240407-wtgdlaaf7w

  • MD5

    e8019fcbd403f23e42d7133b854636cd

  • SHA1

    b613694003dca039fb8368bfdd0217e3699c1894

  • SHA256

    03f6433dda33a3950c2c6d12b9544be8c04431cd6b269badb858bfedf6687330

  • SHA512

    b0f0bb1f2c99b941b6667dbcc0a76f6f7fec9cc2e3e9ca88375aae316b4b9ccd0514da66e5017855da2a60bc329725856dd4d396edbd2d0a333c61a2c9af7dc1

  • SSDEEP

    6144:jxDrWZrQ+ONFDTIvgte8RlrHFllXgDMWd65QXoHqxVDTG/r1pAa+/mf2X+Axiv:jx3WZrQ+ONFDTIvgte8RlrHFllXgDMW4

Score
10/10

Malware Config

Targets

    • Target

      03f6433dda33a3950c2c6d12b9544be8c04431cd6b269badb858bfedf6687330

    • Size

      312KB

    • MD5

      e8019fcbd403f23e42d7133b854636cd

    • SHA1

      b613694003dca039fb8368bfdd0217e3699c1894

    • SHA256

      03f6433dda33a3950c2c6d12b9544be8c04431cd6b269badb858bfedf6687330

    • SHA512

      b0f0bb1f2c99b941b6667dbcc0a76f6f7fec9cc2e3e9ca88375aae316b4b9ccd0514da66e5017855da2a60bc329725856dd4d396edbd2d0a333c61a2c9af7dc1

    • SSDEEP

      6144:jxDrWZrQ+ONFDTIvgte8RlrHFllXgDMWd65QXoHqxVDTG/r1pAa+/mf2X+Axiv:jx3WZrQ+ONFDTIvgte8RlrHFllXgDMW4

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks