Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

e934bf4e4b...97.exe

windows7-x64

10

e934bf4e4b...97.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e934bf4e4bdddc3cc4ff494563b8a9df57bde1c7f61a8681b44d4770f41eef97

  • Size

    148KB

  • Sample

    240611-e6931aveqn

  • MD5

    55a0e9bc768372bda876533d5bb8e0fe

  • SHA1

    d78298df9288c585b226ae674ec031c303b8f295

  • SHA256

    e934bf4e4bdddc3cc4ff494563b8a9df57bde1c7f61a8681b44d4770f41eef97

  • SHA512

    89f52d6348fecf09685ee43b7e978396cfd14fcb5e2e64142eeb6487d23fb255e7404b4fb7f42e49b575f3b075221cd38c87bf6558d271a767ef4345b825722a

  • SSDEEP

    3072:xK5BVnzPVigj6G7gW1lktdVbKPkKE9qKIu64oQZiEvhdc:CBVz9Fj7b1eDvXI3WLu

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      e934bf4e4bdddc3cc4ff494563b8a9df57bde1c7f61a8681b44d4770f41eef97

    • Size

      148KB

    • MD5

      55a0e9bc768372bda876533d5bb8e0fe

    • SHA1

      d78298df9288c585b226ae674ec031c303b8f295

    • SHA256

      e934bf4e4bdddc3cc4ff494563b8a9df57bde1c7f61a8681b44d4770f41eef97

    • SHA512

      89f52d6348fecf09685ee43b7e978396cfd14fcb5e2e64142eeb6487d23fb255e7404b4fb7f42e49b575f3b075221cd38c87bf6558d271a767ef4345b825722a

    • SSDEEP

      3072:xK5BVnzPVigj6G7gW1lktdVbKPkKE9qKIu64oQZiEvhdc:CBVz9Fj7b1eDvXI3WLu

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks