Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-09-21...id.exe

windows7-x64

7

2024-09-21...id.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-21_e8c28242f32cec0687c851aa8166f561_icedid

  • Size

    43.7MB

  • Sample

    240921-brp8hayejk

  • MD5

    e8c28242f32cec0687c851aa8166f561

  • SHA1

    411c254cb16d4a576bce1cfab2d25cc644789cce

  • SHA256

    b81666b56f42d83df228b537a3d4ded8ccad3f066a9dd37aeb759d0da1455184

  • SHA512

    bdc902e8e7d86364de24daadd0b3f271c58c22df7d4d8a71ef06c6163d03475e501eb5bc2da5765fe6cffd61602598209c3f840248573b79ba694711d85fdc22

  • SSDEEP

    98304:YWoyJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJM:loz

Score
7/10
discovery

Malware Config

Targets

    • Target

      2024-09-21_e8c28242f32cec0687c851aa8166f561_icedid

    • Size

      43.7MB

    • MD5

      e8c28242f32cec0687c851aa8166f561

    • SHA1

      411c254cb16d4a576bce1cfab2d25cc644789cce

    • SHA256

      b81666b56f42d83df228b537a3d4ded8ccad3f066a9dd37aeb759d0da1455184

    • SHA512

      bdc902e8e7d86364de24daadd0b3f271c58c22df7d4d8a71ef06c6163d03475e501eb5bc2da5765fe6cffd61602598209c3f840248573b79ba694711d85fdc22

    • SSDEEP

      98304:YWoyJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJM:loz

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks