Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    liquidlauncher_0.2.5_x64_en-US.msi

  • Size

    7.4MB

  • Sample

    240418-shpztagd39

  • MD5

    dc33c92a4ff59c3e7ead5155f372d017

  • SHA1

    b53b631837e6142fc70d5130ea8cac66abc84588

  • SHA256

    2803951e49e45d8eb4113e963c2dfeb9f3727c765c39c0f50779ff5d93556dc9

  • SHA512

    1cd6fdb73953b39b6448b11b7329258c93c8acf3d05e8960f1eb01e78cb71bf06e10c9d3c8b12bb36f6f37e957460b7fef7c6cde09ddbf4b721b2e0fe93cb4b0

  • SSDEEP

    196608:T7UbJG+K70mHXAHZpbzEsxZBaUiUpYEhG8X:nUbJnZrfosxZkUYEhG

Malware Config

Targets

    • Target

      liquidlauncher_0.2.5_x64_en-US.msi

    • Size

      7.4MB

    • MD5

      dc33c92a4ff59c3e7ead5155f372d017

    • SHA1

      b53b631837e6142fc70d5130ea8cac66abc84588

    • SHA256

      2803951e49e45d8eb4113e963c2dfeb9f3727c765c39c0f50779ff5d93556dc9

    • SHA512

      1cd6fdb73953b39b6448b11b7329258c93c8acf3d05e8960f1eb01e78cb71bf06e10c9d3c8b12bb36f6f37e957460b7fef7c6cde09ddbf4b721b2e0fe93cb4b0

    • SSDEEP

      196608:T7UbJG+K70mHXAHZpbzEsxZBaUiUpYEhG8X:nUbJnZrfosxZkUYEhG

    • Blocklisted process makes network request

    • Checks whether UAC is enabled

    • Downloads MZ/PE file

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks