Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    495b7a281fde282e15b04fb45fe34343c1db9c4b71f0e3b24f3b963ee5c6869c

  • Size

    2.7MB

  • Sample

    240519-z36xdsac55

  • MD5

    a285a27e074ef2a209aaa6169d443310

  • SHA1

    f7b28986b7576ed51b58919a13644f466270e316

  • SHA256

    495b7a281fde282e15b04fb45fe34343c1db9c4b71f0e3b24f3b963ee5c6869c

  • SHA512

    e810ffb7121eca9bdab81dd7ac12f3235a823d9ab01cbe6f977adf142184f776f9596a6623947d35c7cb8eb56a7adb0d42965e07dce8510db0436b69f9bd952a

  • SSDEEP

    49152:9jyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:oTE66yXZ02DwUHoazRofxIhELjf/IVgs

Score
10/10

Malware Config

Targets

    • Target

      495b7a281fde282e15b04fb45fe34343c1db9c4b71f0e3b24f3b963ee5c6869c

    • Size

      2.7MB

    • MD5

      a285a27e074ef2a209aaa6169d443310

    • SHA1

      f7b28986b7576ed51b58919a13644f466270e316

    • SHA256

      495b7a281fde282e15b04fb45fe34343c1db9c4b71f0e3b24f3b963ee5c6869c

    • SHA512

      e810ffb7121eca9bdab81dd7ac12f3235a823d9ab01cbe6f977adf142184f776f9596a6623947d35c7cb8eb56a7adb0d42965e07dce8510db0436b69f9bd952a

    • SSDEEP

      49152:9jyT+P66XbOP/ZzA2DItg1Hoaz6wecYfFkURwlhyAuLjf/IVgs5+xP:oTE66yXZ02DwUHoazRofxIhELjf/IVgs

    Score
    9/10
    • Detects binaries and memory artifacts referencing sandbox DLLs typically observed in sandbox evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks