Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

geode-inst...in.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Geode.dll

windows10-2004-x64

1

GeodeUninstaller.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

GeodeUpdater.exe

windows10-2004-x64

1

VC_redist.x64.exe

windows10-2004-x64

4

XInput1_4.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    geode-installer-v3.2.0-win.exe

  • Size

    34.2MB

  • Sample

    240723-m1enxasgqk

  • MD5

    daaf7340c7db388f19cdbca08dab3e9a

  • SHA1

    9b4df1d21a3bacd75f438c96344be3515c6a0ca7

  • SHA256

    2163394fe3e8a630cebd0f44e57c1fea5890a24773327db138a72ee1886eb263

  • SHA512

    bf823ca26bebaa5c6a4174342aec57ccac67ced461f50e4a045e01d5d7d73b9c32443d7c9b8b7481d3f54f2e3fe8487c1b49a4b8b8ea165b5cfa2cb07f17c116

  • SSDEEP

    786432:lMO8SJdkzt6VmvIASP4XwTkYQMqFVJMAWXoyO5xhy+u:lr8SYzTawg5AQzQ8

Score
7/10
discovery

Malware Config

Targets

    • Target

      geode-installer-v3.2.0-win.exe

    • Size

      34.2MB

    • MD5

      daaf7340c7db388f19cdbca08dab3e9a

    • SHA1

      9b4df1d21a3bacd75f438c96344be3515c6a0ca7

    • SHA256

      2163394fe3e8a630cebd0f44e57c1fea5890a24773327db138a72ee1886eb263

    • SHA512

      bf823ca26bebaa5c6a4174342aec57ccac67ced461f50e4a045e01d5d7d73b9c32443d7c9b8b7481d3f54f2e3fe8487c1b49a4b8b8ea165b5cfa2cb07f17c116

    • SSDEEP

      786432:lMO8SJdkzt6VmvIASP4XwTkYQMqFVJMAWXoyO5xhy+u:lr8SYzTawg5AQzQ8

    Score
    7/10

    • Loads dropped DLL

    behavioral1

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      8KB

    • MD5

      313661ec12ed5ce1fd0b3292bf02cb69

    • SHA1

      fd341676cf680a9f0f690c35b43feadc0693e9a8

    • SHA256

      2e08e077a0800ec39c0596f4dd91cbbfa917eeef2d75a00767917b8d1f6884ac

    • SHA512

      a16f35c6019eb1431a3d03fb7d0935c272756f2a8363f541e168a55b2e20a85ee90191715c845ab0588eef8f2af6cf91ac75c5bf1a5d0c61c513339006da9ff2

    • SSDEEP

      96:b0nLo47eYkrGj23kBTPEa8ir2qUuRkNB/RMZCabEO/2/HdNfdpX2N:KoZYkrGj20tEEeYkv/RaCA/2/9h2N

    Score
    3/10
    behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      28KB

    • MD5

      81e34f1c4b04a15dbce200c52f598f67

    • SHA1

      f40a922ad7a5494e2aeeaa2b961d96738e888af7

    • SHA256

      b89448b9fd7be5ef215cac6d973a57c0e75e1fffa25552afe174855c9b71fdf9

    • SHA512

      577f52a292075269f0e8ec4c6d243b2ed411872e009839553020929a8263174ad97943f150543e4ea6cb327d95e227f4065441a9d2106b7cabf1cb872dbcc181

    • SSDEEP

      384:xmEs6sVqQq0DwRiGUaLYuAXLaMoy4m973uwYkvZ6YfkzB8yy1Eiu8ILvFd/9:xmEwqZ2wRiGUcY8TBsdvEbB8yyvIJ

    Score
    3/10
    behavioral3

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      14KB

    • MD5

      2726673c720a296442c8ed134b41d169

    • SHA1

      b8050c85017fcda78f6b82cc86ad277bb0dbd539

    • SHA256

      778b2bfbf3f4e641161f40c8174442a4d3865f097e3a2a383356dbfcac8005ab

    • SHA512

      95fd8cd96a4c627dfc1a89a98630ead3fe431360ab15f2324a52fdd03b2b493bdc44a4d6d0189276826725ea4e48aeb4711459a459b92a80be51e9431b70bb0b

    • SSDEEP

      192:clWWck581HwPRLG/CocFR1w5nEYkv/RGl5BoiS+6SZSM3CU:Hdk5SoRLG/CocFR62Ykv8l5BoiFXyU

    Score
    3/10
    behavioral4

    • Target

      Geode.dll

    • Size

      11.7MB

    • MD5

      3644a2653f403c9c3c58f8f624a81a4c

    • SHA1

      7a76072bcf7c8228dc60ca668e8af1530ca88db3

    • SHA256

      9b198fdf62f5f7d62b91ddc2f46647bf4d87dde035e3c27345f80bc086795233

    • SHA512

      4ecaef5addde00da9c52c7e122d6f8d523edd03abe9044e8b34f0b970f07d45217cbafe9f05489dc6cf9a4631ddaf669a25cad9135d74148fdcfb627a7db986b

    • SSDEEP

      98304:62q1tyT+SY0hWG6B0tT1P2LW+GWfD2UY0+OU0Bz8NN:62q1o6SYrKKBr2UBTU0FE

    Score
    1/10
    behavioral5

    • Target

      GeodeUninstaller.exe

    • Size

      158KB

    • MD5

      29b6d2990f9f399b5582c5939aba4eb0

    • SHA1

      c0666f6064780345d268ca68fe0e86e7418c0039

    • SHA256

      c9438abf8c9fd6f11a242925d444c03af72017d9f9339bf3bf521504abea6f6a

    • SHA512

      8814591817e30b15a2d7ea381e5a1614d196a965ad042ef5ef44c6b6e32153d8cb8d250b183575a4d185e13911d97028609df9f12e29ea5d9a316e78f837288e

    • SSDEEP

      3072:Qrv+LsMjvFsOTb98xQT+5U5qwqF3gIXKVxpW+SzdkVraG:UWLsKB0IqJ7gzSzmVT

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral6

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      8KB

    • MD5

      313661ec12ed5ce1fd0b3292bf02cb69

    • SHA1

      fd341676cf680a9f0f690c35b43feadc0693e9a8

    • SHA256

      2e08e077a0800ec39c0596f4dd91cbbfa917eeef2d75a00767917b8d1f6884ac

    • SHA512

      a16f35c6019eb1431a3d03fb7d0935c272756f2a8363f541e168a55b2e20a85ee90191715c845ab0588eef8f2af6cf91ac75c5bf1a5d0c61c513339006da9ff2

    • SSDEEP

      96:b0nLo47eYkrGj23kBTPEa8ir2qUuRkNB/RMZCabEO/2/HdNfdpX2N:KoZYkrGj20tEEeYkv/RaCA/2/9h2N

    Score
    3/10
    behavioral7

    • Target

      $PLUGINSDIR/System.dll

    • Size

      28KB

    • MD5

      81e34f1c4b04a15dbce200c52f598f67

    • SHA1

      f40a922ad7a5494e2aeeaa2b961d96738e888af7

    • SHA256

      b89448b9fd7be5ef215cac6d973a57c0e75e1fffa25552afe174855c9b71fdf9

    • SHA512

      577f52a292075269f0e8ec4c6d243b2ed411872e009839553020929a8263174ad97943f150543e4ea6cb327d95e227f4065441a9d2106b7cabf1cb872dbcc181

    • SSDEEP

      384:xmEs6sVqQq0DwRiGUaLYuAXLaMoy4m973uwYkvZ6YfkzB8yy1Eiu8ILvFd/9:xmEwqZ2wRiGUcY8TBsdvEbB8yyvIJ

    Score
    3/10
    behavioral8

    • Target

      $PLUGINSDIR/nsDialogs.dll

    • Size

      14KB

    • MD5

      2726673c720a296442c8ed134b41d169

    • SHA1

      b8050c85017fcda78f6b82cc86ad277bb0dbd539

    • SHA256

      778b2bfbf3f4e641161f40c8174442a4d3865f097e3a2a383356dbfcac8005ab

    • SHA512

      95fd8cd96a4c627dfc1a89a98630ead3fe431360ab15f2324a52fdd03b2b493bdc44a4d6d0189276826725ea4e48aeb4711459a459b92a80be51e9431b70bb0b

    • SSDEEP

      192:clWWck581HwPRLG/CocFR1w5nEYkv/RGl5BoiS+6SZSM3CU:Hdk5SoRLG/CocFR62Ykv8l5BoiFXyU

    Score
    3/10
    behavioral9

    • Target

      GeodeUpdater.exe

    • Size

      90KB

    • MD5

      b5dada71f4b5ee7936c1e76c37f72563

    • SHA1

      aaaeca2440d0d00cc86a3b85294578a2c2dde87f

    • SHA256

      e4cc8207f1aeb921a55add47ff6ba21640930a78ba7c4a653f5f6be613b5ebde

    • SHA512

      f5475c438c565a473cc6ae9c68e45b512c3f3a96c084084d7d13fadd1c4241c948f64d6c128b8b579fcad414ab39a32aa6e7d807d12a6c226ee22e9d0171ebf0

    • SSDEEP

      1536:xYXmJEFM8Pj7hXQlAmDIPU3B9Nc4zkdQHavP3Vvt/d5ywB:xEL9czyGHavPH/dw

    Score
    1/10
    behavioral10

    • Target

      VC_redist.x64.exe

    • Size

      24.2MB

    • MD5

      1d545507009cc4ec7409c1bc6e93b17b

    • SHA1

      84c61fadf8cd38016fb7632969b3ace9e54b763a

    • SHA256

      3642e3f95d50cc193e4b5a0b0ffbf7fe2c08801517758b4c8aeb7105a091208a

    • SHA512

      5935b69f5138ac3fbc33813c74da853269ba079f910936aefa95e230c6092b92f6225bffb594e5dd35ff29bf260e4b35f91adede90fdf5f062030d8666fd0104

    • SSDEEP

      786432:tSp+Ty2SfUfnbDDko5dFMYqlQbgAVLSElbmucMuZZxs6Sf:4p+Ty2SfWnHDk8FjVbfzPTq4

    Score
    4/10
    discovery
    behavioral11

    • Target

      XInput1_4.dll

    • Size

      59KB

    • MD5

      8d1acc8e937c4ab664cf556b5530838a

    • SHA1

      96112543de1c91c8c83eec6f1b8dc322f2fcaa76

    • SHA256

      684b3c9f5ba63f550d07793ab91d68b68cbdb85bffee67bde212576bb0d81a2a

    • SHA512

      fc8de7b2ce381c2d71ba029250ea84139ee970fcc676bba05873a0270923672613ee7faaa370d7772bc549dd37bcca408e595b12b91d2b6661bd10d337ad3178

    • SSDEEP

      1536:pCAiqLeyHmb+RlzM838vtolMAL47qD6KO1:pCf3uMq8FofLHHO

    Score
    1/10
    behavioral12

MITRE ATT&CK Enterprise v15

Tasks