Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

ff53d1af36...94.exe

windows7-x64

10

ff53d1af36...94.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ff53d1af3691353d25e995a33ac485d288edcd8f1b2e7df08bbf3324f15a4694

  • Size

    204KB

  • Sample

    240423-gzbmzaeb2x

  • MD5

    25455b745a75237a9611c683b9741314

  • SHA1

    0d46b505694d8def85bf580dbb9a4f5b7acf5525

  • SHA256

    ff53d1af3691353d25e995a33ac485d288edcd8f1b2e7df08bbf3324f15a4694

  • SHA512

    3604391d10e3b8f2b94d6aef17372cc896d79c416e2ee734cf7b54c16b7c6c340e8f34bf5031e18f1b153180a78459891935e96ae98e92ff56ec6c5e08fe76bd

  • SSDEEP

    1536:IU9d4HQ4zxHwxhzbaxNy3tQ9CW5EZWHakMwP9W6uXNi9f1AWa11GBPIdRONd+w6N:JaHQLva0tQ9nLHbB9W+k9ZJgImCtUw

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      ff53d1af3691353d25e995a33ac485d288edcd8f1b2e7df08bbf3324f15a4694

    • Size

      204KB

    • MD5

      25455b745a75237a9611c683b9741314

    • SHA1

      0d46b505694d8def85bf580dbb9a4f5b7acf5525

    • SHA256

      ff53d1af3691353d25e995a33ac485d288edcd8f1b2e7df08bbf3324f15a4694

    • SHA512

      3604391d10e3b8f2b94d6aef17372cc896d79c416e2ee734cf7b54c16b7c6c340e8f34bf5031e18f1b153180a78459891935e96ae98e92ff56ec6c5e08fe76bd

    • SSDEEP

      1536:IU9d4HQ4zxHwxhzbaxNy3tQ9CW5EZWHakMwP9W6uXNi9f1AWa11GBPIdRONd+w6N:JaHQLva0tQ9nLHbB9W+k9ZJgImCtUw

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks