Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    SFP_UI.exe

  • Size

    86.8MB

  • Sample

    240429-zwp1asca82

  • MD5

    e05f8d1c756b00b7aa7b4904229a7f2c

  • SHA1

    0bca323e3d90517ed93b2af4600565d03c2f024c

  • SHA256

    b3aab3fb1ee76880e3dc6db8103c95a415d04f938c47014f7acd744d517ee319

  • SHA512

    24c819c4377feb95e095d5f94419f7988c3a80cf0cea161cd5b7a27537c2610e2cca8ab294a8c8b67d58bef7355e16e2f4e341a4ca4c9c77d4210e42f45d747a

  • SSDEEP

    786432:2tJ7qLsEakqRRLDUp+WNPPZ0gBpB3rKA0DYUhi6:2H7qLs+qZKZ0gBp2x

Score
7/10

Malware Config

Targets

    • Target

      SFP_UI.exe

    • Size

      86.8MB

    • MD5

      e05f8d1c756b00b7aa7b4904229a7f2c

    • SHA1

      0bca323e3d90517ed93b2af4600565d03c2f024c

    • SHA256

      b3aab3fb1ee76880e3dc6db8103c95a415d04f938c47014f7acd744d517ee319

    • SHA512

      24c819c4377feb95e095d5f94419f7988c3a80cf0cea161cd5b7a27537c2610e2cca8ab294a8c8b67d58bef7355e16e2f4e341a4ca4c9c77d4210e42f45d747a

    • SSDEEP

      786432:2tJ7qLsEakqRRLDUp+WNPPZ0gBpB3rKA0DYUhi6:2H7qLs+qZKZ0gBp2x

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks