Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
136s -
max time network
146s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
18/08/2024, 03:13
Static task
static1
Behavioral task
behavioral1
Sample
ab685cf56c41f3c5f0bd64a49824c5135fbdf3550868f297c722d37213c0b7a9.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
ab685cf56c41f3c5f0bd64a49824c5135fbdf3550868f297c722d37213c0b7a9.exe
Resource
win10v2004-20240802-en
General
-
Target
ab685cf56c41f3c5f0bd64a49824c5135fbdf3550868f297c722d37213c0b7a9.exe
-
Size
48KB
-
MD5
e14e0c99ee9728ff9c29b90188bb5380
-
SHA1
d37e03a230406f2716a4ef66e041623211124a60
-
SHA256
ab685cf56c41f3c5f0bd64a49824c5135fbdf3550868f297c722d37213c0b7a9
-
SHA512
2166c6f3520c3d11509d06d08333c5f16a49bfbf1a9872bace22fec8caf9ba2260d8b23b72b7ad555e2a4d401e19b14c5ff5a40b6422408a8f735ed578561475
-
SSDEEP
768:9GvbqsQdX5BhGEnOsIzfJ4i4g5p0syi+hvN18K3H8T6++3Kd8VVrG2:4zqsQ5PIt4+/yfeB6rXVrG2
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language ab685cf56c41f3c5f0bd64a49824c5135fbdf3550868f297c722d37213c0b7a9.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
48KB
MD5098264bf3b35f9ee7d654ddcb32b0570
SHA130bcb4a288798379a9bdf933b76f5ce8f86e2a60
SHA256cd8a7a5a718c3b7ad0cf3974aadfa0e7ded70ab7fec3cbcfe2db41426529a09e
SHA5128650ddd598915c0110514f5fc3a7e9dcb58ad0a4449114be947410b999d270220b11edb491c815c091178542eface9c4796d2c9eef088f100c5301f9f4e97d69