Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    script.ps1

  • Size

    2KB

  • Sample

    240715-s23d9azhnh

  • MD5

    3254b5618f8278514f8e83dedb5c7996

  • SHA1

    19b12a1ec5e94fca3c1f07b357e74fe791f001bc

  • SHA256

    cd80c4f9e20f6f7f2d0694ed8a21aeeedd1bb075ee6794d39fbd0b2f8f85c2f3

  • SHA512

    9e52971f389e7f0bb5663825d51a938af46fbc48ec49307c314a435ba646d458f9c5748d79099dd289efcb6ce7311bbe301f92820754f3cff11639733629d897

Malware Config

Targets

    • Target

      script.ps1

    • Size

      2KB

    • MD5

      3254b5618f8278514f8e83dedb5c7996

    • SHA1

      19b12a1ec5e94fca3c1f07b357e74fe791f001bc

    • SHA256

      cd80c4f9e20f6f7f2d0694ed8a21aeeedd1bb075ee6794d39fbd0b2f8f85c2f3

    • SHA512

      9e52971f389e7f0bb5663825d51a938af46fbc48ec49307c314a435ba646d458f9c5748d79099dd289efcb6ce7311bbe301f92820754f3cff11639733629d897

    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks