Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e00e260dcd3db9f92382c39152fdd820N

  • Size

    49KB

  • Sample

    240914-wv3yzsycjb

  • MD5

    e00e260dcd3db9f92382c39152fdd820

  • SHA1

    cfcba24a21814e1cfdd6e0c138b5dca95c047a4a

  • SHA256

    b76c769c954a976e811bb74283993ae508f3ff98753f3ac5f35037a5d0bf7fc2

  • SHA512

    37908f82ff253b4fd6ef65623f3c1b09ac0371968bee046e8d74fcdaf2929af342b6fc41bd697f46e17d24ad8badefc3b276c31b69db7babf1302bbf24e64cf0

  • SSDEEP

    1536:NLI4qg9+Q/KMJqSsGpdNmLUIsWsdM5T233Z:Bb/jq0LNmLUIsWsdM5T233Z

Malware Config

Targets

    • Target

      e00e260dcd3db9f92382c39152fdd820N

    • Size

      49KB

    • MD5

      e00e260dcd3db9f92382c39152fdd820

    • SHA1

      cfcba24a21814e1cfdd6e0c138b5dca95c047a4a

    • SHA256

      b76c769c954a976e811bb74283993ae508f3ff98753f3ac5f35037a5d0bf7fc2

    • SHA512

      37908f82ff253b4fd6ef65623f3c1b09ac0371968bee046e8d74fcdaf2929af342b6fc41bd697f46e17d24ad8badefc3b276c31b69db7babf1302bbf24e64cf0

    • SSDEEP

      1536:NLI4qg9+Q/KMJqSsGpdNmLUIsWsdM5T233Z:Bb/jq0LNmLUIsWsdM5T233Z

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks