Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

0ecf609ddc...0N.exe

windows7-x64

7

0ecf609ddc...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ecf609ddcf3ace6e04121853f0b2f70N.exe

  • Size

    134KB

  • Sample

    240720-1k7xeayeqp

  • MD5

    0ecf609ddcf3ace6e04121853f0b2f70

  • SHA1

    9000f2fbdce27a1e44adf2c91a673596a02eb484

  • SHA256

    4926da8f17642412e5c19c390aab3df0dcd09586d409c922c7c5d8d1ed8e9aab

  • SHA512

    7a170702339a9a47f3fce1dbd316522236b001b72a946ef2dff39a8d22db6086cb3f235efb2e331802a47b444d089a4c668f4393062e18f0c74c52c83148e1ba

  • SSDEEP

    1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SO0:YfU/WF6QMauSuiWNi9eNOl0007NZIO0

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      0ecf609ddcf3ace6e04121853f0b2f70N.exe

    • Size

      134KB

    • MD5

      0ecf609ddcf3ace6e04121853f0b2f70

    • SHA1

      9000f2fbdce27a1e44adf2c91a673596a02eb484

    • SHA256

      4926da8f17642412e5c19c390aab3df0dcd09586d409c922c7c5d8d1ed8e9aab

    • SHA512

      7a170702339a9a47f3fce1dbd316522236b001b72a946ef2dff39a8d22db6086cb3f235efb2e331802a47b444d089a4c668f4393062e18f0c74c52c83148e1ba

    • SSDEEP

      1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SO0:YfU/WF6QMauSuiWNi9eNOl0007NZIO0

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks