Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    SevenRedCodeDotnet.exe

  • Size

    27KB

  • Sample

    240501-gtneksbg64

  • MD5

    5ae9732fbd8a3404e4914e96aaedddce

  • SHA1

    90128fcf994a12ecaddedad371470a907f2b31de

  • SHA256

    0025b64d6da82f3e885a04ae7ef56b997f22516ec385550cd3ae7e84fdabe402

  • SHA512

    6257fa81a8542bf7a2daedd010153eb118569b625fd483a0d3edf89a6a5505516bc59ced9a45858a2edf0d9e9691df971eaf3c11dfbeefaab9c763a578581bd5

  • SSDEEP

    384:HILkvRsJpkyPer+5TDFGTFeWJTnVNybtvCMbrMcD4yvkjvcK5M/sYipRP1YUxlvq:o4dJTHybSQd0aGF+

Score
7/10

Malware Config

Targets

    • Target

      SevenRedCodeDotnet.exe

    • Size

      27KB

    • MD5

      5ae9732fbd8a3404e4914e96aaedddce

    • SHA1

      90128fcf994a12ecaddedad371470a907f2b31de

    • SHA256

      0025b64d6da82f3e885a04ae7ef56b997f22516ec385550cd3ae7e84fdabe402

    • SHA512

      6257fa81a8542bf7a2daedd010153eb118569b625fd483a0d3edf89a6a5505516bc59ced9a45858a2edf0d9e9691df971eaf3c11dfbeefaab9c763a578581bd5

    • SSDEEP

      384:HILkvRsJpkyPer+5TDFGTFeWJTnVNybtvCMbrMcD4yvkjvcK5M/sYipRP1YUxlvq:o4dJTHybSQd0aGF+

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks