Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

6

PDF.rar

windows10-2004-x64

3

analisis.pdf

windows10-2004-x64

1

informe_payload.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PDF.rar

  • Size

    205KB

  • Sample

    240417-t7e2kshb2x

  • MD5

    23adf2753e354c84c56d988ea151f6d7

  • SHA1

    42aebbfde9f34ff4a2f9e1fe118f55f4bad6e5df

  • SHA256

    0cc3d1184459ede431afbaf85d0c6ac12f065a9d2e25488e937fb9d8a54c2633

  • SHA512

    4679f81f276a27e89d2d36982315dcb9f81283d75a1eb9881aab6a41949c11d8704b3ba99a8ce0c2f26a236e8e185f301d9de350489b046a1535977e2cc4c5cb

  • SSDEEP

    6144:wN/zsd97p1rbPIfABaKOYxFsQdZGvIU7R:wpzs37DPIfABa6hgIU7R

Score
7/10
javascriptlinkpdfpersistence

Malware Config

Targets

    • Target

      PDF.rar

    • Size

      205KB

    • MD5

      23adf2753e354c84c56d988ea151f6d7

    • SHA1

      42aebbfde9f34ff4a2f9e1fe118f55f4bad6e5df

    • SHA256

      0cc3d1184459ede431afbaf85d0c6ac12f065a9d2e25488e937fb9d8a54c2633

    • SHA512

      4679f81f276a27e89d2d36982315dcb9f81283d75a1eb9881aab6a41949c11d8704b3ba99a8ce0c2f26a236e8e185f301d9de350489b046a1535977e2cc4c5cb

    • SSDEEP

      6144:wN/zsd97p1rbPIfABaKOYxFsQdZGvIU7R:wpzs37DPIfABa6hgIU7R

    Score
    3/10
    behavioral1

    • Target

      analisis.pdf

    • Size

      212KB

    • MD5

      f28baa94ff32d8a4b006004b3c9c4261

    • SHA1

      54677341b7e233d8c0b6dcd38dc5e9d1a58511ef

    • SHA256

      cc48d8c645c27dd850652c0a66e22dd2e1b62bbf6ad208f94b8f5847684a8d17

    • SHA512

      853dc19d16e4387210e63b3de74c044db802e429bf12d082e00b66f127bb64e742cad32e2b1f23661a11cb47341d7b34e249533b2fb15a3815ed81b677f64989

    • SSDEEP

      3072:cyu1+HubW8lW1Sn6WEQKLy0jSaMWyAKCxxDghhiR9j4BIIADNI63Cv3UOLn5ZVv1:cyu1PdWEHEQlWyA/7am9kBAJIECvv5bd

    Score
    1/10
    behavioral2

    • Target

      informe_payload.pdf

    • Size

      32KB

    • MD5

      8606faa60b008da0ce43437dc81be1e2

    • SHA1

      13444f825362a6a946b3a91b13784d78fe3fc422

    • SHA256

      4de3dde86d66424d79fcb561ace579d6b22919f52505aa177bd161bcf4157c4f

    • SHA512

      e23e310399baf03034b51f1be445ea01a6ef2ec4f82da43af6c4639dc28834d49119ddb83f40019ff6c9b45124da637d579ef5289620a13a7078284c7fead33b

    • SSDEEP

      384:3ZzPGPxHwgaWu7/+ulyEMZBSbtR+aHD7N9wUjOreoKxDIqPODwPMShkm/cbFk1GJ:3FqiDZZgzw0qBPbhbO9Ysax58svre

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral3

MITRE ATT&CK Enterprise v15

Tasks