Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9ccd79f698c02cbb1d394d3047515330N.exe

  • Size

    67KB

  • Sample

    240824-yjat6swdjb

  • MD5

    9ccd79f698c02cbb1d394d3047515330

  • SHA1

    2e3baa085506046bec730682e834b406697cea2b

  • SHA256

    bf992ac4db39eda600480f333c3f4daa2b0e5889f6e1f3970db946e012e73ceb

  • SHA512

    7c0fd045b761cb572869767230482791c231fdf5a51ba2912a76961659839ad257c3ae295d261d9b28c253f8f5ffdb7e65bd0f4c8d282419de1598653bee0952

  • SSDEEP

    768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6+LLL8cccpPPPPq:Zr3Z5IfQIR81ad5yX6FcccpPPPPq

Malware Config

Targets

    • Target

      9ccd79f698c02cbb1d394d3047515330N.exe

    • Size

      67KB

    • MD5

      9ccd79f698c02cbb1d394d3047515330

    • SHA1

      2e3baa085506046bec730682e834b406697cea2b

    • SHA256

      bf992ac4db39eda600480f333c3f4daa2b0e5889f6e1f3970db946e012e73ceb

    • SHA512

      7c0fd045b761cb572869767230482791c231fdf5a51ba2912a76961659839ad257c3ae295d261d9b28c253f8f5ffdb7e65bd0f4c8d282419de1598653bee0952

    • SSDEEP

      768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6+LLL8cccpPPPPq:Zr3Z5IfQIR81ad5yX6FcccpPPPPq

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks