Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

95602e6660...bN.exe

windows7-x64

8

95602e6660...bN.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    95602e66605d74f8ae3ee3cd62080c11f02e450df1eaa13a450781ad0345875bN

  • Size

    203KB

  • Sample

    240919-bpp5qatclk

  • MD5

    e1bfd78da29f35c6343a579c1e8238a0

  • SHA1

    708e572928f695741c7a4d8b7e9ebe4f35ed641e

  • SHA256

    95602e66605d74f8ae3ee3cd62080c11f02e450df1eaa13a450781ad0345875b

  • SHA512

    bbeb0f307c1405caf13f018b4f0f48a3547749f19a5069f14cca956d44eec2a187a5792b666f5158d3423af2bb8138fbe77f776d7763a0a21c59514e4bb81016

  • SSDEEP

    3072:nchlUq90BGgKt/14Id5lM2kpHtDCJrqxRCNsOoBSlN/625ML71B:n6lUVBGgK91BWBlCZqxRkVoWNW7H

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      95602e66605d74f8ae3ee3cd62080c11f02e450df1eaa13a450781ad0345875bN

    • Size

      203KB

    • MD5

      e1bfd78da29f35c6343a579c1e8238a0

    • SHA1

      708e572928f695741c7a4d8b7e9ebe4f35ed641e

    • SHA256

      95602e66605d74f8ae3ee3cd62080c11f02e450df1eaa13a450781ad0345875b

    • SHA512

      bbeb0f307c1405caf13f018b4f0f48a3547749f19a5069f14cca956d44eec2a187a5792b666f5158d3423af2bb8138fbe77f776d7763a0a21c59514e4bb81016

    • SSDEEP

      3072:nchlUq90BGgKt/14Id5lM2kpHtDCJrqxRCNsOoBSlN/625ML71B:n6lUVBGgK91BWBlCZqxRkVoWNW7H

    Score
    8/10
    discoverypersistence

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks