Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
76ff45783b000417ff0e6c6c9467297e81a857aa03244f7bc6271eb67bcb21e1
-
Size
204KB
-
Sample
240811-2n85baxaph
-
MD5
2c71fe44a840e624a608bac0a35898b2
-
SHA1
58629fed571776143625b7a299b029cf5c2305cd
-
SHA256
76ff45783b000417ff0e6c6c9467297e81a857aa03244f7bc6271eb67bcb21e1
-
SHA512
0d1cbaf889bc06fab08031fb750b562118f7bf17fc0c2f1a97e14e94907678f5abd86b49a5fc383a612962ef1b6719fd569df09c8b65240978bd880fc7472872
-
SSDEEP
3072:JmOW8To0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWwf:wzoo4QxL7B9W0c1RCzR/fSmlp
Malware Config
Targets
-
-
Target
76ff45783b000417ff0e6c6c9467297e81a857aa03244f7bc6271eb67bcb21e1
-
Size
204KB
-
MD5
2c71fe44a840e624a608bac0a35898b2
-
SHA1
58629fed571776143625b7a299b029cf5c2305cd
-
SHA256
76ff45783b000417ff0e6c6c9467297e81a857aa03244f7bc6271eb67bcb21e1
-
SHA512
0d1cbaf889bc06fab08031fb750b562118f7bf17fc0c2f1a97e14e94907678f5abd86b49a5fc383a612962ef1b6719fd569df09c8b65240978bd880fc7472872
-
SSDEEP
3072:JmOW8To0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWwf:wzoo4QxL7B9W0c1RCzR/fSmlp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2