Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    95a5f142e06894b1aa80e77f6758d820N.exe

  • Size

    52KB

  • Sample

    240902-fs5f2asekk

  • MD5

    95a5f142e06894b1aa80e77f6758d820

  • SHA1

    eac64e4dba0615185ad29ad955c10463cd890948

  • SHA256

    ec78aa16f02bca6012711466c456a4d008ffebacd64b6be020e13bfae6ae1b7f

  • SHA512

    24d2330bfded7e66dd2238942be59cefce852411bf527517f9b34f6c0fab92fdf40d1c57f54d57c3e5d75d400efb8d1b4380cf4e4be0126114e3977af01cd134

  • SSDEEP

    768:/uWn2wgVPe4A7okNPL1jskr/v/m89S3rkC6R+wibw52TzpGh:/SVe4A7xRLNskr3mbkC6R+XpGh

Malware Config

Targets

    • Target

      95a5f142e06894b1aa80e77f6758d820N.exe

    • Size

      52KB

    • MD5

      95a5f142e06894b1aa80e77f6758d820

    • SHA1

      eac64e4dba0615185ad29ad955c10463cd890948

    • SHA256

      ec78aa16f02bca6012711466c456a4d008ffebacd64b6be020e13bfae6ae1b7f

    • SHA512

      24d2330bfded7e66dd2238942be59cefce852411bf527517f9b34f6c0fab92fdf40d1c57f54d57c3e5d75d400efb8d1b4380cf4e4be0126114e3977af01cd134

    • SSDEEP

      768:/uWn2wgVPe4A7okNPL1jskr/v/m89S3rkC6R+wibw52TzpGh:/SVe4A7xRLNskr3mbkC6R+XpGh

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks