Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fd1c4cbf9d453ae4c1ca38738a340200N.exe

  • Size

    33KB

  • Sample

    240817-xgmwaatfnr

  • MD5

    fd1c4cbf9d453ae4c1ca38738a340200

  • SHA1

    58c60758587a65050b403f1e3556d0255f3060c7

  • SHA256

    4a1b16364c0928824aa286ffa2d028965723cbd35c8fc04b36562736c281df47

  • SHA512

    9833acc01d95a9246b568a30885a2f595a75a0ce897ec122ee605782e4a111915e0831d7f02ac75cbe599861600da48fe3e2c4ca32d8524f05500771bb946146

  • SSDEEP

    768:4noSEjp9Plchfr6TUqnbcuyD7UYK4pavvvZeee26666HEEExTtqqqqBttttv:4oSEZWTUUqnouy8YXEvvvZeee5Lttttv

Malware Config

Targets

    • Target

      fd1c4cbf9d453ae4c1ca38738a340200N.exe

    • Size

      33KB

    • MD5

      fd1c4cbf9d453ae4c1ca38738a340200

    • SHA1

      58c60758587a65050b403f1e3556d0255f3060c7

    • SHA256

      4a1b16364c0928824aa286ffa2d028965723cbd35c8fc04b36562736c281df47

    • SHA512

      9833acc01d95a9246b568a30885a2f595a75a0ce897ec122ee605782e4a111915e0831d7f02ac75cbe599861600da48fe3e2c4ca32d8524f05500771bb946146

    • SSDEEP

      768:4noSEjp9Plchfr6TUqnbcuyD7UYK4pavvvZeee26666HEEExTtqqqqBttttv:4oSEZWTUUqnouy8YXEvvvZeee5Lttttv

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks