Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

8bc8a71745...41.exe

windows7-x64

7

8bc8a71745...41.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bc8a71745b194ecca332454132e91c48433b990f3c4770fd1ddc17be3427541

  • Size

    84KB

  • Sample

    240808-asb7lazhne

  • MD5

    5291f39da088b1ac535b2cf5b5973658

  • SHA1

    a92ac5efff6172eb2f9cb6cc4bcae05cd65e47bc

  • SHA256

    8bc8a71745b194ecca332454132e91c48433b990f3c4770fd1ddc17be3427541

  • SHA512

    aa2e961ae6fc4af3aaec2f56eb27bb0c1aa8896d09fb4962107bffddf9788469aefc43332cd7d902b4d661cd4c567c12ff9d437d58b8080af72791005b069265

  • SSDEEP

    1536:1clIGFNMi+hJUneHoGTvvv4V9hqdhbtgS:+RMi+fUnCTvvv4V9hEhbCS

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      8bc8a71745b194ecca332454132e91c48433b990f3c4770fd1ddc17be3427541

    • Size

      84KB

    • MD5

      5291f39da088b1ac535b2cf5b5973658

    • SHA1

      a92ac5efff6172eb2f9cb6cc4bcae05cd65e47bc

    • SHA256

      8bc8a71745b194ecca332454132e91c48433b990f3c4770fd1ddc17be3427541

    • SHA512

      aa2e961ae6fc4af3aaec2f56eb27bb0c1aa8896d09fb4962107bffddf9788469aefc43332cd7d902b4d661cd4c567c12ff9d437d58b8080af72791005b069265

    • SSDEEP

      1536:1clIGFNMi+hJUneHoGTvvv4V9hqdhbtgS:+RMi+fUnCTvvv4V9hEhbCS

    Score
    7/10
    discoverypersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks