Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

2216025774...66.bat

windows7-x64

8

2216025774...66.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    22160257741816426666.bat

  • Size

    2KB

  • Sample

    240719-hh3kssxdmp

  • MD5

    40dfe6b737470a7ef0e7a4051e462249

  • SHA1

    bc71c3f175b07bf9f80abe6c5fd65d8b472d3fde

  • SHA256

    4ac8a043805ff64dea888fb3859d36f1a2e6a27fc9d36d64da9c887c528fb5a3

  • SHA512

    9016c35633718ed0350029f69f65b08ba292b9a3220fea7f0e284f8d54ed0c15dea98cef5eb4a648a1f13951b1706213c44e117244e4d798f266d7d89602aab0

Score
8/10
execution

Malware Config

Targets

    • Target

      22160257741816426666.bat

    • Size

      2KB

    • MD5

      40dfe6b737470a7ef0e7a4051e462249

    • SHA1

      bc71c3f175b07bf9f80abe6c5fd65d8b472d3fde

    • SHA256

      4ac8a043805ff64dea888fb3859d36f1a2e6a27fc9d36d64da9c887c528fb5a3

    • SHA512

      9016c35633718ed0350029f69f65b08ba292b9a3220fea7f0e284f8d54ed0c15dea98cef5eb4a648a1f13951b1706213c44e117244e4d798f266d7d89602aab0

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks