Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

ca67c61618...AS.exe

windows7-x64

7

ca67c61618...AS.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca67c61618ea7af894952a2ce97dc580_NEAS

  • Size

    134KB

  • Sample

    240507-svmefsch71

  • MD5

    ca67c61618ea7af894952a2ce97dc580

  • SHA1

    9a630e7ae99d0377b8bdb7942b6e1b51482565d6

  • SHA256

    a255a2542ead397a83b07e0dbe9a8de66ce1fe08d2e7eacc02da821e408886e0

  • SHA512

    9c5bb57f26725306811b1b377592d123b57fb70c7284ec91b9732e57bddf664ec43dcd160e28d14baa605e4f1bc95f62d702ce8915e1455e4071970bc6eec767

  • SSDEEP

    1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SOT:YfU/WF6QMauSuiWNi9eNOl0007NZIOT

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      ca67c61618ea7af894952a2ce97dc580_NEAS

    • Size

      134KB

    • MD5

      ca67c61618ea7af894952a2ce97dc580

    • SHA1

      9a630e7ae99d0377b8bdb7942b6e1b51482565d6

    • SHA256

      a255a2542ead397a83b07e0dbe9a8de66ce1fe08d2e7eacc02da821e408886e0

    • SHA512

      9c5bb57f26725306811b1b377592d123b57fb70c7284ec91b9732e57bddf664ec43dcd160e28d14baa605e4f1bc95f62d702ce8915e1455e4071970bc6eec767

    • SSDEEP

      1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SOT:YfU/WF6QMauSuiWNi9eNOl0007NZIOT

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks