Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    32373310491654616266.bat

  • Size

    14KB

  • Sample

    240724-ckv1vavgpd

  • MD5

    8427871b34d5eccba78f14f4d5ffd667

  • SHA1

    f9ff2008a757196f33c71308512ced1c764013ac

  • SHA256

    86fd1fe4c9923b925a58c6831716a07e11485a277b39c9e8914ad3ecee42c9f0

  • SHA512

    45390eccb32ab1f38081285708b0a183f269accaa86155f40b5c51ba2d487e2ded8e63c2b4a6e02d2b28de0ecd21c6b9845fa1ab0d672d7a5415cbc43882c789

  • SSDEEP

    192:HBTPPNL/RN5laa3FpGLGKtV8pOIf/36u3zpiZB401CGW5NGW95wH+uGsmJuab0JY:HBTP1LZN5dpDsoOQ9J5eJvmmN/TtnO

Score
8/10

Malware Config

Targets

    • Target

      32373310491654616266.bat

    • Size

      14KB

    • MD5

      8427871b34d5eccba78f14f4d5ffd667

    • SHA1

      f9ff2008a757196f33c71308512ced1c764013ac

    • SHA256

      86fd1fe4c9923b925a58c6831716a07e11485a277b39c9e8914ad3ecee42c9f0

    • SHA512

      45390eccb32ab1f38081285708b0a183f269accaa86155f40b5c51ba2d487e2ded8e63c2b4a6e02d2b28de0ecd21c6b9845fa1ab0d672d7a5415cbc43882c789

    • SSDEEP

      192:HBTPPNL/RN5laa3FpGLGKtV8pOIf/36u3zpiZB401CGW5NGW95wH+uGsmJuab0JY:HBTP1LZN5dpDsoOQ9J5eJvmmN/TtnO

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks