Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3a5833df19607946bc8cb51577675176b6b4f55a87c1b2ec72ce9025b93f12db

  • Size

    476KB

  • Sample

    240701-zdkmvssbnq

  • MD5

    566dcb7c5cc7df524025c3c35feafdbe

  • SHA1

    bfc7d2e5ef315daaa18b09410f1fb9f4dc3601cb

  • SHA256

    3a5833df19607946bc8cb51577675176b6b4f55a87c1b2ec72ce9025b93f12db

  • SHA512

    4a6e1d7cc0adb4ba0b45b58da46448e3a6291164372687d195427f6e40a6fdeb4b34740970bc235f735a054271108517e1c9b91f3c6a2ec525dc8e4c35590d28

  • SSDEEP

    3072:Jin8r+coP2W0XgEU5IuY2R8FD8edLhb9x4CuSqhAp08FkGRnNrdf45AjqKnoem:23P0KPsvKhAp081nNVjqKoe

Score
9/10
upx

Malware Config

Targets

    • Target

      3a5833df19607946bc8cb51577675176b6b4f55a87c1b2ec72ce9025b93f12db

    • Size

      476KB

    • MD5

      566dcb7c5cc7df524025c3c35feafdbe

    • SHA1

      bfc7d2e5ef315daaa18b09410f1fb9f4dc3601cb

    • SHA256

      3a5833df19607946bc8cb51577675176b6b4f55a87c1b2ec72ce9025b93f12db

    • SHA512

      4a6e1d7cc0adb4ba0b45b58da46448e3a6291164372687d195427f6e40a6fdeb4b34740970bc235f735a054271108517e1c9b91f3c6a2ec525dc8e4c35590d28

    • SSDEEP

      3072:Jin8r+coP2W0XgEU5IuY2R8FD8edLhb9x4CuSqhAp08FkGRnNrdf45AjqKnoem:23P0KPsvKhAp081nNVjqKoe

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks