Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
x2s443bc.cs1.exe
-
Size
15.9MB
-
Sample
240819-s8fttswfnk
-
MD5
cf2a00cda850b570f0aa6266b9a5463e
-
SHA1
ab9eb170448c95eccb65bf0665ac9739021200b6
-
SHA256
c62cb66498344fc2374c0924d813711ff6fa00caea8581ae104c3c03b9233455
-
SHA512
12d58063ccad16b01aaa5efb82a26c44c0bf58e75d497258da5cc390dcf03c2f06481b7621610305f9f350729ac4351ef432683c0f366cb3b4e24d2ffb6fc2a0
-
SSDEEP
393216:x4qAB9wufflSR+eSHLZBsUOAyyYpqf9pzJfvht54QY3lZUEsB0:ODwuFeELZay06BJfpr4d4zB0
Static task
static1
Behavioral task
behavioral1
Sample
x2s443bc.cs1.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
x2s443bc.cs1.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
x2s443bc.cs1.exe
-
Size
15.9MB
-
MD5
cf2a00cda850b570f0aa6266b9a5463e
-
SHA1
ab9eb170448c95eccb65bf0665ac9739021200b6
-
SHA256
c62cb66498344fc2374c0924d813711ff6fa00caea8581ae104c3c03b9233455
-
SHA512
12d58063ccad16b01aaa5efb82a26c44c0bf58e75d497258da5cc390dcf03c2f06481b7621610305f9f350729ac4351ef432683c0f366cb3b4e24d2ffb6fc2a0
-
SSDEEP
393216:x4qAB9wufflSR+eSHLZBsUOAyyYpqf9pzJfvht54QY3lZUEsB0:ODwuFeELZay06BJfpr4d4zB0
Score6/10-
Adds Run key to start application
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1