Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-07...py.exe

windows7-x64

7

2024-05-07...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-07_cdbdca53047f8908a23ecbb2d0415be7_mafia_nionspy

  • Size

    280KB

  • Sample

    240507-qrdxsscb88

  • MD5

    cdbdca53047f8908a23ecbb2d0415be7

  • SHA1

    16c0fda0fbec0b2424c35ba22f8195584d119e98

  • SHA256

    bea99ac9f78665a1991d878fd2e04ed5ffb2cab4bdf9a5752a98cb8484026bb4

  • SHA512

    a705dc150c940823dccc4e7f10b4b4cb28f74b69e0795ac6c5f4a4d8f4621504a71e4ecf9c8db6a9ae33d9d5ace0cc672edb6752f9ae2f39a97c88f6c0564bce

  • SSDEEP

    6144:xTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:xTBPFV0RyWl3h2E+7pl

Score
7/10

Malware Config

Targets

    • Target

      2024-05-07_cdbdca53047f8908a23ecbb2d0415be7_mafia_nionspy

    • Size

      280KB

    • MD5

      cdbdca53047f8908a23ecbb2d0415be7

    • SHA1

      16c0fda0fbec0b2424c35ba22f8195584d119e98

    • SHA256

      bea99ac9f78665a1991d878fd2e04ed5ffb2cab4bdf9a5752a98cb8484026bb4

    • SHA512

      a705dc150c940823dccc4e7f10b4b4cb28f74b69e0795ac6c5f4a4d8f4621504a71e4ecf9c8db6a9ae33d9d5ace0cc672edb6752f9ae2f39a97c88f6c0564bce

    • SSDEEP

      6144:xTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:xTBPFV0RyWl3h2E+7pl

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks