Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    artmoney817rus64.exe

  • Size

    3.9MB

  • Sample

    240425-sqnfysca43

  • MD5

    bbbf3c798f2bf2e572c92f3f65dd4297

  • SHA1

    6f50873bb849496e5e9b523b155f79c87db239ae

  • SHA256

    57d5386c5518ec1f787265be4b8c450218f2a558828d365dc0a6f2dc3ba05c47

  • SHA512

    6cd97f128f93f978369e19123d6e11171f70cf423b284ee75628ec8388b71b723ebdc7e44ec72ee0f4389c1a86ebc99f7640a63d91aeb743f5535fc5d9b4ef71

  • SSDEEP

    98304:q2W+Psr0/2uj/aQxnIBNQ25kE68y1XN1shbOi3EerD1nBq:q2W3URxIBa236TchbJ3EerD1no

Score
7/10

Malware Config

Targets

    • Target

      artmoney817rus64.exe

    • Size

      3.9MB

    • MD5

      bbbf3c798f2bf2e572c92f3f65dd4297

    • SHA1

      6f50873bb849496e5e9b523b155f79c87db239ae

    • SHA256

      57d5386c5518ec1f787265be4b8c450218f2a558828d365dc0a6f2dc3ba05c47

    • SHA512

      6cd97f128f93f978369e19123d6e11171f70cf423b284ee75628ec8388b71b723ebdc7e44ec72ee0f4389c1a86ebc99f7640a63d91aeb743f5535fc5d9b4ef71

    • SSDEEP

      98304:q2W+Psr0/2uj/aQxnIBNQ25kE68y1XN1shbOi3EerD1nBq:q2W3URxIBa236TchbJ3EerD1no

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks