Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

48019ff661...90.exe

windows7-x64

9

48019ff661...90.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    48019ff6610b68f0f54f57f15cfa4b4ef896f8e611c6a20066f13bf4c22b1990

  • Size

    30KB

  • Sample

    240630-zystzavhpd

  • MD5

    07fd96a6c350ef7504eb87ebfebba57c

  • SHA1

    3c596b393f0188020029466a01c8ed84b8283ca3

  • SHA256

    48019ff6610b68f0f54f57f15cfa4b4ef896f8e611c6a20066f13bf4c22b1990

  • SHA512

    fe9f7d9bbc63874521fcfbe36cc1ea4297f6c58ad6ce546efd3b8faee8dd3cabb6eda9a7c0c32fc9f3eca64c3356f9c4c743ebab2fe65f2b0d528878ebad17be

  • SSDEEP

    768:7JpMcU2hW/IzV/K7m/41b0HnuaN7Dq5zpywA0:bMcU28wzV/KKg1b8u9zpw0

Score
10/10

Malware Config

Targets

    • Target

      48019ff6610b68f0f54f57f15cfa4b4ef896f8e611c6a20066f13bf4c22b1990

    • Size

      30KB

    • MD5

      07fd96a6c350ef7504eb87ebfebba57c

    • SHA1

      3c596b393f0188020029466a01c8ed84b8283ca3

    • SHA256

      48019ff6610b68f0f54f57f15cfa4b4ef896f8e611c6a20066f13bf4c22b1990

    • SHA512

      fe9f7d9bbc63874521fcfbe36cc1ea4297f6c58ad6ce546efd3b8faee8dd3cabb6eda9a7c0c32fc9f3eca64c3356f9c4c743ebab2fe65f2b0d528878ebad17be

    • SSDEEP

      768:7JpMcU2hW/IzV/K7m/41b0HnuaN7Dq5zpywA0:bMcU28wzV/KKg1b8u9zpw0

    Score
    9/10

    • Detects executables built or packed with MPress PE compressor

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks