Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    wmplayer.exe

  • Size

    163KB

  • Sample

    240823-29g8qavcqr

  • MD5

    ab48e42633b738e114db94cd99e919b7

  • SHA1

    a7f89ccdd5103c671f201a4349219bbae3051d90

  • SHA256

    407e3aae5e533719998055a1a949ab2ec6224ea42918a000596225e30c8d2bf8

  • SHA512

    3b007e65c25410761f0da25d688a0d1b6d7a38711cc28c626d96c416bc406e0ef5831e7d25830e6521dc39f01d1b1ebc20e6709c4a80e1d225228eb37079a3be

  • SSDEEP

    3072:E0oZohYkQr0jeLwJr95rJolNAzyP+msVK0Zq:JYQqLwhHrWsOP+5VT

Score
7/10

Malware Config

Targets

    • Target

      wmplayer.exe

    • Size

      163KB

    • MD5

      ab48e42633b738e114db94cd99e919b7

    • SHA1

      a7f89ccdd5103c671f201a4349219bbae3051d90

    • SHA256

      407e3aae5e533719998055a1a949ab2ec6224ea42918a000596225e30c8d2bf8

    • SHA512

      3b007e65c25410761f0da25d688a0d1b6d7a38711cc28c626d96c416bc406e0ef5831e7d25830e6521dc39f01d1b1ebc20e6709c4a80e1d225228eb37079a3be

    • SSDEEP

      3072:E0oZohYkQr0jeLwJr95rJolNAzyP+msVK0Zq:JYQqLwhHrWsOP+5VT

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks