Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

FModel.exe

windows7-x64

3

FModel.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    FModel.exe

  • Size

    30.3MB

  • Sample

    240905-tadr9avcme

  • MD5

    b4ebf2a58ad70f931c581e639cfe88c4

  • SHA1

    3f2ac147cdd474c22cf54e40dcfb7863e8494369

  • SHA256

    616580b4f0292b2a93b957cca624683a7b8d750807ab6c0ef9dda6e6920ca1cf

  • SHA512

    eb09e5035bb776b97bd96a4582d24b72dc199b54f14c724b161c4bdc1b21f273432a53eda4ff7d45ae03e3bcd3920e1fe1d028959de919b0df3d3fb396c4db18

  • SSDEEP

    196608:AxxDjECsn99bg7s3dwzJD3Z40DbTlqWchPL/TUyuVyAh+TZOENCzVknONqV5m4n0:Axx3ECOF3dwtCER/sZOzGnOY55n0

Score
8/10
discovery

Malware Config

Targets

    • Target

      FModel.exe

    • Size

      30.3MB

    • MD5

      b4ebf2a58ad70f931c581e639cfe88c4

    • SHA1

      3f2ac147cdd474c22cf54e40dcfb7863e8494369

    • SHA256

      616580b4f0292b2a93b957cca624683a7b8d750807ab6c0ef9dda6e6920ca1cf

    • SHA512

      eb09e5035bb776b97bd96a4582d24b72dc199b54f14c724b161c4bdc1b21f273432a53eda4ff7d45ae03e3bcd3920e1fe1d028959de919b0df3d3fb396c4db18

    • SSDEEP

      196608:AxxDjECsn99bg7s3dwzJD3Z40DbTlqWchPL/TUyuVyAh+TZOENCzVknONqV5m4n0:Axx3ECOF3dwtCER/sZOzGnOY55n0

    Score
    8/10
    discovery

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks