Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-10...py.exe

windows7-x64

7

2024-05-10...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-10_b81ad4b5486f14cf1078f653969bc98a_mafia_nionspy

  • Size

    280KB

  • Sample

    240510-mxc1xaab6v

  • MD5

    b81ad4b5486f14cf1078f653969bc98a

  • SHA1

    289517f232918df422ae2fe86879b766fc4251a9

  • SHA256

    284a336db845a6676682577c2c8f5a6eda3231abac9b920fec0f241cb9dcf321

  • SHA512

    9cfcfb9195294cb4e94debf8fef4fff3981a4e06ca6dcca35588504f47a846a7dad454b30f717b8fc58f21dd61b69aede4d53f402eb6decf4bc1828d5c931adf

  • SSDEEP

    6144:IQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:IQMyfmNFHfnWfhLZVHmOog

Score
7/10

Malware Config

Targets

    • Target

      2024-05-10_b81ad4b5486f14cf1078f653969bc98a_mafia_nionspy

    • Size

      280KB

    • MD5

      b81ad4b5486f14cf1078f653969bc98a

    • SHA1

      289517f232918df422ae2fe86879b766fc4251a9

    • SHA256

      284a336db845a6676682577c2c8f5a6eda3231abac9b920fec0f241cb9dcf321

    • SHA512

      9cfcfb9195294cb4e94debf8fef4fff3981a4e06ca6dcca35588504f47a846a7dad454b30f717b8fc58f21dd61b69aede4d53f402eb6decf4bc1828d5c931adf

    • SSDEEP

      6144:IQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:IQMyfmNFHfnWfhLZVHmOog

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks