Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    be7266ae3ab6cf0575fa09981a5e75e0N.exe

  • Size

    59KB

  • Sample

    240807-pd4qmasbjh

  • MD5

    be7266ae3ab6cf0575fa09981a5e75e0

  • SHA1

    432fc76a8c8420ccba93d28162bcb40c654c7cac

  • SHA256

    6496030122999703843c59323cd5166f3152a27eeb4ae871e04cd1e780885f38

  • SHA512

    24cf110357801db1d8af68e7dc5472f6b6f1d90528252ead87fb6844e883cb7ad23d91d2ff76c20b621e24f9a427790b7f5200181cf05d0abe51a9410a4f763a

  • SSDEEP

    1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQ1:OeodiUO4p13b9HiIeoutuh1aQ1

Malware Config

Targets

    • Target

      be7266ae3ab6cf0575fa09981a5e75e0N.exe

    • Size

      59KB

    • MD5

      be7266ae3ab6cf0575fa09981a5e75e0

    • SHA1

      432fc76a8c8420ccba93d28162bcb40c654c7cac

    • SHA256

      6496030122999703843c59323cd5166f3152a27eeb4ae871e04cd1e780885f38

    • SHA512

      24cf110357801db1d8af68e7dc5472f6b6f1d90528252ead87fb6844e883cb7ad23d91d2ff76c20b621e24f9a427790b7f5200181cf05d0abe51a9410a4f763a

    • SSDEEP

      1536:3+ZgwRdiE8cO4p1xRjfTvSq5r3ZiIZ4nouy8uh1aQ1:OeodiUO4p13b9HiIeoutuh1aQ1

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks