Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

01c1ea8de0...52.exe

windows7-x64

9

01c1ea8de0...52.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    01c1ea8de0a2b4b5a040650dc866889e613a7426b74d0a2b46972e731cec2c52

  • Size

    239KB

  • Sample

    240521-wrj2psdg41

  • MD5

    10f7199c775155bf7610338b2fd95677

  • SHA1

    30a6e8b2dc722f0d4005463069945b7b26fd90c8

  • SHA256

    01c1ea8de0a2b4b5a040650dc866889e613a7426b74d0a2b46972e731cec2c52

  • SHA512

    dbed80c667b3fbf4e2603340dcf51e84ff59b9a4b3bde6f0479f063f16d866067ead5edd8d9bdd674df3ba7cd73c2cafbdd6e2e95e6c738ff19de7507b8a547a

  • SSDEEP

    3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUpf:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNipf

Score
10/10
upx

Malware Config

Targets

    • Target

      01c1ea8de0a2b4b5a040650dc866889e613a7426b74d0a2b46972e731cec2c52

    • Size

      239KB

    • MD5

      10f7199c775155bf7610338b2fd95677

    • SHA1

      30a6e8b2dc722f0d4005463069945b7b26fd90c8

    • SHA256

      01c1ea8de0a2b4b5a040650dc866889e613a7426b74d0a2b46972e731cec2c52

    • SHA512

      dbed80c667b3fbf4e2603340dcf51e84ff59b9a4b3bde6f0479f063f16d866067ead5edd8d9bdd674df3ba7cd73c2cafbdd6e2e95e6c738ff19de7507b8a547a

    • SSDEEP

      3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUpf:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNipf

    Score
    9/10
    upx

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks