Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

script.vbs

windows7-x64

8

script.vbs

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    script.vbs

  • Size

    866B

  • Sample

    240611-vgzhzavank

  • MD5

    9d05776bbc360594d755362f43e7d427

  • SHA1

    4c7eab3c65c85d0b57c53f57ba2029d73b505e21

  • SHA256

    cb0a1c1c80f0a657bef498f545fc7a6caba709cc16350cf354d5e3c1873993de

  • SHA512

    83e4260c048d954321c3f8c23dcdc97508de5c24350d7b6d558eb791ad3603fda9b755eadfd7ed5998be6ab0185dd7d8c47ee01217db12d52abab43bec28c21b

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      script.vbs

    • Size

      866B

    • MD5

      9d05776bbc360594d755362f43e7d427

    • SHA1

      4c7eab3c65c85d0b57c53f57ba2029d73b505e21

    • SHA256

      cb0a1c1c80f0a657bef498f545fc7a6caba709cc16350cf354d5e3c1873993de

    • SHA512

      83e4260c048d954321c3f8c23dcdc97508de5c24350d7b6d558eb791ad3603fda9b755eadfd7ed5998be6ab0185dd7d8c47ee01217db12d52abab43bec28c21b

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Modifies file permissions

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks