Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

e0fb8d828a...09.exe

windows7-x64

9

e0fb8d828a...09.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0fb8d828a8eda306caa334148bfdaf539818481ffd7439a2606283a8171cb09

  • Size

    81KB

  • Sample

    240409-dq3hjscg72

  • MD5

    a112d5ade831b828454a4bc4185ba13e

  • SHA1

    9cbb196f6cb4ac96c16336bdeac75934b49b0f6e

  • SHA256

    e0fb8d828a8eda306caa334148bfdaf539818481ffd7439a2606283a8171cb09

  • SHA512

    c045a0437875c324c422a3588136fb259cce3d098b4ce4a86396e755e10e9df6274b4145df7da49d3b246453cb53cc6ad8fa2ddd5f6a3cd38a67a213e04ab527

  • SSDEEP

    1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2Zl:sB+F8tfPN4yCDKDjvQQQtS

Score
9/10

Malware Config

Targets

    • Target

      e0fb8d828a8eda306caa334148bfdaf539818481ffd7439a2606283a8171cb09

    • Size

      81KB

    • MD5

      a112d5ade831b828454a4bc4185ba13e

    • SHA1

      9cbb196f6cb4ac96c16336bdeac75934b49b0f6e

    • SHA256

      e0fb8d828a8eda306caa334148bfdaf539818481ffd7439a2606283a8171cb09

    • SHA512

      c045a0437875c324c422a3588136fb259cce3d098b4ce4a86396e755e10e9df6274b4145df7da49d3b246453cb53cc6ad8fa2ddd5f6a3cd38a67a213e04ab527

    • SSDEEP

      1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2Zl:sB+F8tfPN4yCDKDjvQQQtS

    Score
    9/10

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks