Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

1735029318...67.bat

windows7-x64

8

1735029318...67.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1735029318528212967.bat

  • Size

    15KB

  • Sample

    240721-aesmes1flc

  • MD5

    0a9f25855e463f11ab15b841612fd559

  • SHA1

    63d55ef717fa4a0043962ef8f0ee2780c9defec2

  • SHA256

    58d35d6d5449ed2e4b19765cb816a53f6b04f0c7b76f6b4031653ee71858ad48

  • SHA512

    aeeaaeb11040a389025577afb15bcca4e9aab1dc8265ea83899b7e0979b2145469d82b9f3d4b7429460d780a06aa1e6c503d2eac237de0623fca9d2310e78de9

  • SSDEEP

    384:2QAbHWG8ZSt6VacFL+alAndGeuOShSzh0dz3Oce:tA7WOt60m0hKzet

Score
8/10
execution

Malware Config

Targets

    • Target

      1735029318528212967.bat

    • Size

      15KB

    • MD5

      0a9f25855e463f11ab15b841612fd559

    • SHA1

      63d55ef717fa4a0043962ef8f0ee2780c9defec2

    • SHA256

      58d35d6d5449ed2e4b19765cb816a53f6b04f0c7b76f6b4031653ee71858ad48

    • SHA512

      aeeaaeb11040a389025577afb15bcca4e9aab1dc8265ea83899b7e0979b2145469d82b9f3d4b7429460d780a06aa1e6c503d2eac237de0623fca9d2310e78de9

    • SSDEEP

      384:2QAbHWG8ZSt6VacFL+alAndGeuOShSzh0dz3Oce:tA7WOt60m0hKzet

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks