Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

driftaline....4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    driftaline-installer-v1.4.exe

  • Size

    45.6MB

  • Sample

    240527-q6kc5afg59

  • MD5

    e834580b27ec84984ecb8aa14ba04fbe

  • SHA1

    1a3a358aa2a22e58b24bdebbc6b70f67a2ab5736

  • SHA256

    e01dd4833b60c7e32afdd7ec4d74ac962d32b3a798e96d88a0d9ea6ff81ee7f5

  • SHA512

    dd80e5962bdd91d78224e2efbcc6b4f190a1e7c9300b92046f6e74bc74c65eab7cdf72a15bb1fefb798ae449d531e98f9285d8809d2b3d6fce2718b85e2f1685

  • SSDEEP

    786432:pMw7sBmQ621PqS6xJHbm7plPf03W5/LASl2b9C4+aol+3pez78herbV13w7:GHtHVsIL83WtcO33fI8/8hY13

Score
8/10
discovery

Malware Config

Targets

    • Target

      driftaline-installer-v1.4.exe

    • Size

      45.6MB

    • MD5

      e834580b27ec84984ecb8aa14ba04fbe

    • SHA1

      1a3a358aa2a22e58b24bdebbc6b70f67a2ab5736

    • SHA256

      e01dd4833b60c7e32afdd7ec4d74ac962d32b3a798e96d88a0d9ea6ff81ee7f5

    • SHA512

      dd80e5962bdd91d78224e2efbcc6b4f190a1e7c9300b92046f6e74bc74c65eab7cdf72a15bb1fefb798ae449d531e98f9285d8809d2b3d6fce2718b85e2f1685

    • SSDEEP

      786432:pMw7sBmQ621PqS6xJHbm7plPf03W5/LASl2b9C4+aol+3pez78herbV13w7:GHtHVsIL83WtcO33fI8/8hY13

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks