Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-06-08...py.exe

windows7-x64

7

2024-06-08...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-08_34462c8a2138183f96b6234a92d68415_mafia_nionspy

  • Size

    280KB

  • Sample

    240608-gjeppaae57

  • MD5

    34462c8a2138183f96b6234a92d68415

  • SHA1

    71b8c2f4c3bf872b825362df4999279d0fc94dc9

  • SHA256

    13779ae58a53a004d43b5837edace2d262b0aa5adedf165a89e58a923b12efc6

  • SHA512

    9a4f51039b386c555a836ccd1b7bfd6d6f73bb7824267147ef66437656a51bfdea7ad1ee86190b05f9af8ed632b29ac672a1fe4c24b7800881767efa0fec78f3

  • SSDEEP

    6144:nTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:nTBPFV0RyWl3h2E+7pl

Score
7/10

Malware Config

Targets

    • Target

      2024-06-08_34462c8a2138183f96b6234a92d68415_mafia_nionspy

    • Size

      280KB

    • MD5

      34462c8a2138183f96b6234a92d68415

    • SHA1

      71b8c2f4c3bf872b825362df4999279d0fc94dc9

    • SHA256

      13779ae58a53a004d43b5837edace2d262b0aa5adedf165a89e58a923b12efc6

    • SHA512

      9a4f51039b386c555a836ccd1b7bfd6d6f73bb7824267147ef66437656a51bfdea7ad1ee86190b05f9af8ed632b29ac672a1fe4c24b7800881767efa0fec78f3

    • SSDEEP

      6144:nTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:nTBPFV0RyWl3h2E+7pl

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks