Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
95a5f142e06894b1aa80e77f6758d820N.exe
-
Size
52KB
-
Sample
240902-fs5f2asekk
-
MD5
95a5f142e06894b1aa80e77f6758d820
-
SHA1
eac64e4dba0615185ad29ad955c10463cd890948
-
SHA256
ec78aa16f02bca6012711466c456a4d008ffebacd64b6be020e13bfae6ae1b7f
-
SHA512
24d2330bfded7e66dd2238942be59cefce852411bf527517f9b34f6c0fab92fdf40d1c57f54d57c3e5d75d400efb8d1b4380cf4e4be0126114e3977af01cd134
-
SSDEEP
768:/uWn2wgVPe4A7okNPL1jskr/v/m89S3rkC6R+wibw52TzpGh:/SVe4A7xRLNskr3mbkC6R+XpGh
Malware Config
Targets
-
-
Target
95a5f142e06894b1aa80e77f6758d820N.exe
-
Size
52KB
-
MD5
95a5f142e06894b1aa80e77f6758d820
-
SHA1
eac64e4dba0615185ad29ad955c10463cd890948
-
SHA256
ec78aa16f02bca6012711466c456a4d008ffebacd64b6be020e13bfae6ae1b7f
-
SHA512
24d2330bfded7e66dd2238942be59cefce852411bf527517f9b34f6c0fab92fdf40d1c57f54d57c3e5d75d400efb8d1b4380cf4e4be0126114e3977af01cd134
-
SSDEEP
768:/uWn2wgVPe4A7okNPL1jskr/v/m89S3rkC6R+wibw52TzpGh:/SVe4A7xRLNskr3mbkC6R+XpGh
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2