Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-04-25...py.exe

windows7-x64

7

2024-04-25...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-25_970043f1c87524cc588c027fa182f855_mafia_nionspy

  • Size

    328KB

  • Sample

    240425-jnlpxagh78

  • MD5

    970043f1c87524cc588c027fa182f855

  • SHA1

    fc61a492a72995d016619fac2b8afbb715e25635

  • SHA256

    3e1de46920dd3f27b355ccac40dab6934c56c6ce7b40d23734e7242dae7bd157

  • SHA512

    e234e0e6cd4e8667856e54142557f7e9795ca657a8c117e02fcd1c38de40803b61b23b38d6273a2c2ad97aac8151301a0a9ed63cc07a153cf4c094b8c366db3c

  • SSDEEP

    6144:g2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:g2TFafJiHCWBWPMjVWrXf1v

Score
7/10

Malware Config

Targets

    • Target

      2024-04-25_970043f1c87524cc588c027fa182f855_mafia_nionspy

    • Size

      328KB

    • MD5

      970043f1c87524cc588c027fa182f855

    • SHA1

      fc61a492a72995d016619fac2b8afbb715e25635

    • SHA256

      3e1de46920dd3f27b355ccac40dab6934c56c6ce7b40d23734e7242dae7bd157

    • SHA512

      e234e0e6cd4e8667856e54142557f7e9795ca657a8c117e02fcd1c38de40803b61b23b38d6273a2c2ad97aac8151301a0a9ed63cc07a153cf4c094b8c366db3c

    • SSDEEP

      6144:g2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG89gkPzDh1v:g2TFafJiHCWBWPMjVWrXf1v

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks