Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2a39251d4e0d3c049c367ba43b1d3600N.exe
-
Size
284KB
-
Sample
240906-j3rjpswbqh
-
MD5
2a39251d4e0d3c049c367ba43b1d3600
-
SHA1
f7d8c1a977b3caea6c1cbc0baab3389ae66547ea
-
SHA256
61f4765d3b25fd9b797e345d76a31af8c777f7a1982b68954638e78f530c47a0
-
SHA512
2317022d6c2ad38f98a971c129ee908756beb20049286aac88e74aecfacacd27ccd78f66e1acaeab2cc82bccef3964b65bb827532625b7c19ceab1b82ae4b8bb
-
SSDEEP
6144:R7FaiFChL5Rjda3P/fis6Do/uP+tFb84ly7ac:dFaiFCF5xI3PH96DoWPYb8n
Malware Config
Targets
-
-
Target
2a39251d4e0d3c049c367ba43b1d3600N.exe
-
Size
284KB
-
MD5
2a39251d4e0d3c049c367ba43b1d3600
-
SHA1
f7d8c1a977b3caea6c1cbc0baab3389ae66547ea
-
SHA256
61f4765d3b25fd9b797e345d76a31af8c777f7a1982b68954638e78f530c47a0
-
SHA512
2317022d6c2ad38f98a971c129ee908756beb20049286aac88e74aecfacacd27ccd78f66e1acaeab2cc82bccef3964b65bb827532625b7c19ceab1b82ae4b8bb
-
SSDEEP
6144:R7FaiFChL5Rjda3P/fis6Do/uP+tFb84ly7ac:dFaiFCF5xI3PH96DoWPYb8n
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2