Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-08-22...py.exe

windows7-x64

7

2024-08-22...py.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-08-22_dfddffdb1fe11a38f4720b175bd59b32_mafia_nionspy

  • Size

    280KB

  • Sample

    240822-3d4mhstbjh

  • MD5

    dfddffdb1fe11a38f4720b175bd59b32

  • SHA1

    a26429a5b6d9fdef619d119313852187dd8c925a

  • SHA256

    49e9c06666d7a5f40dbf39afc4bf30fe824948f23cc08c8940a21afe1b96eb80

  • SHA512

    149ec08c1901742b35d6c0a90dece24a58a22983592dda740b0720eca718e75ff8cff0058882b597f6d46e6479bdb9cb1543d72b95547e56895410fca57cfb2d

  • SSDEEP

    6144:UQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:UQMyfmNFHfnWfhLZVHmOog

Score
7/10
discovery

Malware Config

Targets

    • Target

      2024-08-22_dfddffdb1fe11a38f4720b175bd59b32_mafia_nionspy

    • Size

      280KB

    • MD5

      dfddffdb1fe11a38f4720b175bd59b32

    • SHA1

      a26429a5b6d9fdef619d119313852187dd8c925a

    • SHA256

      49e9c06666d7a5f40dbf39afc4bf30fe824948f23cc08c8940a21afe1b96eb80

    • SHA512

      149ec08c1901742b35d6c0a90dece24a58a22983592dda740b0720eca718e75ff8cff0058882b597f6d46e6479bdb9cb1543d72b95547e56895410fca57cfb2d

    • SSDEEP

      6144:UQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:UQMyfmNFHfnWfhLZVHmOog

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks