Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

26/07/2024, 19:00

240726-xnn2xsyarn 8

General

  • Target

    thats not my neighbor.exe

  • Size

    8KB

  • Sample

    240726-xnn2xsyarn

  • MD5

    c6bffae52e9552a22a1aee2993ee361c

  • SHA1

    9799422474b327cc48e7d8ca1029d9f4ef1f2900

  • SHA256

    3bdc58e1586f13c2235facad41e048e9475fb7a0f3cf28f106fbc496ddba4c3e

  • SHA512

    e9f4a95e9469d4aa45b94879c57d5f296c3d2194af6007865943fcb9ebd719f73815e65557e22f83c605d973924b12a340f6d29bc23e3baa7496a34d4cbcc2ed

  • SSDEEP

    192:QLTeeNdaLixSepSnm/VunlYJLLLTuEFNZEk9qaP:QLTtdaLiyuhPLTuEFzETa

Malware Config

Targets

    • Target

      thats not my neighbor.exe

    • Size

      8KB

    • MD5

      c6bffae52e9552a22a1aee2993ee361c

    • SHA1

      9799422474b327cc48e7d8ca1029d9f4ef1f2900

    • SHA256

      3bdc58e1586f13c2235facad41e048e9475fb7a0f3cf28f106fbc496ddba4c3e

    • SHA512

      e9f4a95e9469d4aa45b94879c57d5f296c3d2194af6007865943fcb9ebd719f73815e65557e22f83c605d973924b12a340f6d29bc23e3baa7496a34d4cbcc2ed

    • SSDEEP

      192:QLTeeNdaLixSepSnm/VunlYJLLLTuEFNZEk9qaP:QLTtdaLiyuhPLTuEFzETa

    • Disables Task Manager via registry modification

    • Modifies Windows Firewall

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Network Share Discovery

      Attempt to gather information on host network.

MITRE ATT&CK Enterprise v15

Tasks