Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

105b762570...0N.exe

windows7-x64

7

105b762570...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    105b7625700fb0632823388cb09724f0N.exe

  • Size

    455KB

  • Sample

    240711-2a3elsyhjc

  • MD5

    105b7625700fb0632823388cb09724f0

  • SHA1

    785734a36e054513b3c9d781c8ddde1c3b6d60ca

  • SHA256

    4d4fb3bcd314d3eb584fde7f207f5166cda487a09437866f21c08f8c114c4c0b

  • SHA512

    9df5490cfba00d6a0e7b5d6f11bc1c7f571a4fbd9250d2f69f42dcb9471f228ef6a36e7f53896fdd9db00e6574086006b7431258ec171cac1f4011328ed556b3

  • SSDEEP

    6144:aBapC9DUIYmO5Kv5Q7X/l/rYvkW1VxxfnzrV9UAH0ctkPfc92F8oLpIh9jil:VpQD+mO5KWy/zrVbt4fcYz9U9jI

Score
7/10
persistence

Malware Config

Targets

    • Target

      105b7625700fb0632823388cb09724f0N.exe

    • Size

      455KB

    • MD5

      105b7625700fb0632823388cb09724f0

    • SHA1

      785734a36e054513b3c9d781c8ddde1c3b6d60ca

    • SHA256

      4d4fb3bcd314d3eb584fde7f207f5166cda487a09437866f21c08f8c114c4c0b

    • SHA512

      9df5490cfba00d6a0e7b5d6f11bc1c7f571a4fbd9250d2f69f42dcb9471f228ef6a36e7f53896fdd9db00e6574086006b7431258ec171cac1f4011328ed556b3

    • SSDEEP

      6144:aBapC9DUIYmO5Kv5Q7X/l/rYvkW1VxxfnzrV9UAH0ctkPfc92F8oLpIh9jil:VpQD+mO5KWy/zrVbt4fcYz9U9jI

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks