Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    158686892482627479.bat

  • Size

    11KB

  • Sample

    240719-yqy6caxcpm

  • MD5

    c22dcfb899e5397b7e95109741260294

  • SHA1

    a665343c06e321f42638a4cc267b5569ee6ca372

  • SHA256

    36dc7c49ff2b11d6a64393062d1e52981613a6cbcc108cbdb10ee89176f61b11

  • SHA512

    57202733dbff145f22a7a33ade0d8a0a243b9e864e5c1f3e9c01f30e50cf49e7507365f1e3a566e91bf1537b33185811817d817d1012f1b334c90a43723f8616

  • SSDEEP

    192:qPNI47Xewdyf99BS991oEU5vQGfyf/GnvLS2yd2FxOwrZQT0G+6:8NIm3dyf99A99+EU5vQXnGnvLS2jFx1O

Score
8/10

Malware Config

Targets

    • Target

      158686892482627479.bat

    • Size

      11KB

    • MD5

      c22dcfb899e5397b7e95109741260294

    • SHA1

      a665343c06e321f42638a4cc267b5569ee6ca372

    • SHA256

      36dc7c49ff2b11d6a64393062d1e52981613a6cbcc108cbdb10ee89176f61b11

    • SHA512

      57202733dbff145f22a7a33ade0d8a0a243b9e864e5c1f3e9c01f30e50cf49e7507365f1e3a566e91bf1537b33185811817d817d1012f1b334c90a43723f8616

    • SSDEEP

      192:qPNI47Xewdyf99BS991oEU5vQGfyf/GnvLS2yd2FxOwrZQT0G+6:8NIm3dyf99A99+EU5vQXnGnvLS2jFx1O

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks