Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1980671213b1e430106e143d55e9c720f7c925fa9025d19635b61b2a0061d859.vbs

  • Size

    10KB

  • Sample

    240508-bvxrradh32

  • MD5

    0af963bf87233b7550e02def326787b2

  • SHA1

    20e2306b9c77aca90a8db3f6f32f5afbfc7b55bb

  • SHA256

    1980671213b1e430106e143d55e9c720f7c925fa9025d19635b61b2a0061d859

  • SHA512

    e15f5f0f6428cf10371cbc8802ef1df9b8a89a88b704cdceee3f489c04194b024bc35404daa41e113bb033d2deb57b710c9475793257e23882e3a71af834a323

  • SSDEEP

    192:J1BzGNLMQFn1gIwTKtrirKkVfT37vDW8hwMMOS5bI1n3y+IqZ4kxN7iySIple8YO:J3xbz8+3xN5pltQXlUp

Score
8/10

Malware Config

Targets

    • Target

      1980671213b1e430106e143d55e9c720f7c925fa9025d19635b61b2a0061d859.vbs

    • Size

      10KB

    • MD5

      0af963bf87233b7550e02def326787b2

    • SHA1

      20e2306b9c77aca90a8db3f6f32f5afbfc7b55bb

    • SHA256

      1980671213b1e430106e143d55e9c720f7c925fa9025d19635b61b2a0061d859

    • SHA512

      e15f5f0f6428cf10371cbc8802ef1df9b8a89a88b704cdceee3f489c04194b024bc35404daa41e113bb033d2deb57b710c9475793257e23882e3a71af834a323

    • SSDEEP

      192:J1BzGNLMQFn1gIwTKtrirKkVfT37vDW8hwMMOS5bI1n3y+IqZ4kxN7iySIple8YO:J3xbz8+3xN5pltQXlUp

    Score
    8/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks