Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0d23848def89126e1313672c44c02f07

  • Size

    340KB

  • Sample

    240409-z7tsmabf94

  • MD5

    0d23848def89126e1313672c44c02f07

  • SHA1

    d3a7d3b023158b631b24bb1fa1daa18aa7e64c15

  • SHA256

    5fdb64a7a0f92d15693dad8166756353745ec9323b76364986a991283efbbdc6

  • SHA512

    87c95770af94962ab367068f7b81c907e43450a237494198e60746e88c0c354ffe70899391c60d0a3212c08aea1ac7cf93e26ab1fb89ee0b52d31d04ff615e9e

  • SSDEEP

    6144:VFyR9SLkWor+akVC5s/durgm7hv8htqiXkIvaX/m7bfTWaUspmHjYT9oFv6wHH/f:bI9SLkWor+akVC5s/dIdEhtqiXkIvaXr

Score
10/10

Malware Config

Targets

    • Target

      0d23848def89126e1313672c44c02f07

    • Size

      340KB

    • MD5

      0d23848def89126e1313672c44c02f07

    • SHA1

      d3a7d3b023158b631b24bb1fa1daa18aa7e64c15

    • SHA256

      5fdb64a7a0f92d15693dad8166756353745ec9323b76364986a991283efbbdc6

    • SHA512

      87c95770af94962ab367068f7b81c907e43450a237494198e60746e88c0c354ffe70899391c60d0a3212c08aea1ac7cf93e26ab1fb89ee0b52d31d04ff615e9e

    • SSDEEP

      6144:VFyR9SLkWor+akVC5s/durgm7hv8htqiXkIvaX/m7bfTWaUspmHjYT9oFv6wHH/f:bI9SLkWor+akVC5s/dIdEhtqiXkIvaXr

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks