Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

2695257d4b...23.exe

windows7-x64

7

2695257d4b...23.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17461836495.zip

  • Size

    81.7MB

  • Sample

    240529-pb49daee79

  • MD5

    91594254b528e92ee9a8bd431be3a66d

  • SHA1

    724c42bbf1a61cdbb8e7d92f8bbd734aedaec44e

  • SHA256

    b399ac96177bb91162091df22c6f9f472f10ef70ecf4995a5928b9d832e71341

  • SHA512

    85afcc0f02c61de0a69c08dff7d358ca73bfbb46910db27e4ca1c6a356817db2bfe5ca8845c26984500a95fd7a8dbd18e8e9e630fb0ffe2675e7ac72a6d0fc4c

  • SSDEEP

    1572864:vW5sXedi6lOOL2YMlW1Kg/L7290eOJSz9yFpRSjsjOYNgFt3bOLsYJN7Hyzy:umXqOOHtP7xJS5O7S6Or3SwYJN7Hyy

Score
7/10
discoveryexecution

Malware Config

Targets

    • Target

      2695257d4bdbf56f979b486881cb3620c93cd7d7d2e0cf40d8d17be7a2f07d23

    • Size

      82.3MB

    • MD5

      771b3d466a16b1b7f9ea1a71b67dddc3

    • SHA1

      77220ecdcdadd608c203421857c85fe5bdae38c0

    • SHA256

      2695257d4bdbf56f979b486881cb3620c93cd7d7d2e0cf40d8d17be7a2f07d23

    • SHA512

      d26c5c7388cf5216e5b6e3f7b25570aee95d0c7370b43fd3dd2cf139e696d49ea6878e0a93f6eda9a4c7ccf5ac7491e8108052432cc4897eb64d772bd190c09a

    • SSDEEP

      1572864:9qtnsjkeRmlNb5XHvfgWkZKcZ1XY2F+xTqcjS3Y6WdtSuU8mjFeSnD6RK6Z:9qd9SmThHXpk3vI2Ivu3Y6W7SS4FeSne

    Score
    7/10
    discoveryexecution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks