Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

1

2024-06-29...ia.exe

windows7-x64

9

2024-06-29...ia.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-29_791b89f18b2fe6d871cc5681af2a78f5_mafia

  • Size

    508KB

  • Sample

    240629-hagy5asfkg

  • MD5

    791b89f18b2fe6d871cc5681af2a78f5

  • SHA1

    678167d3bc68723cb4b79814329ea874a404e038

  • SHA256

    a921843e912a1a889153fe50e6e676daf1e8d9a00f64b9c5631b31881b430c7f

  • SHA512

    03925d86ae9c71a2e65d9b13877140d8545b119f8e368cd675b5d683704cf3094e4507a9fb2138312033a6b84f87f90c90d67b8cdf9863ce1c608328d30eb03b

  • SSDEEP

    12288:Jy8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWd0:JytAXDHvLiVM1lCcPuf249YO0

Score
9/10
evasion

Malware Config

Targets

    • Target

      2024-06-29_791b89f18b2fe6d871cc5681af2a78f5_mafia

    • Size

      508KB

    • MD5

      791b89f18b2fe6d871cc5681af2a78f5

    • SHA1

      678167d3bc68723cb4b79814329ea874a404e038

    • SHA256

      a921843e912a1a889153fe50e6e676daf1e8d9a00f64b9c5631b31881b430c7f

    • SHA512

      03925d86ae9c71a2e65d9b13877140d8545b119f8e368cd675b5d683704cf3094e4507a9fb2138312033a6b84f87f90c90d67b8cdf9863ce1c608328d30eb03b

    • SSDEEP

      12288:Jy8RUAXZNHvLiW4LJf08YtlCvk1V10f24moBYWd0:JytAXDHvLiVM1lCcPuf249YO0

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks