Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

83b3a19812...2N.exe

windows7-x64

7

83b3a19812...2N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83b3a19812b3fcf08c55b39a75d882274f4a150c536923b9920b5270f5b46a12N.exe

  • Size

    24KB

  • Sample

    240925-m6c29sverc

  • MD5

    5d67356120099a52d50ddec61784aa10

  • SHA1

    c56b7e96a35acfcbea040a3c55e376242d178315

  • SHA256

    83b3a19812b3fcf08c55b39a75d882274f4a150c536923b9920b5270f5b46a12

  • SHA512

    a3d79c63a7a51b6aef2cfc38e0fc6a42253641bf20729533df42c533bc96ab15d59a7d212e4d41b05a368b4438887cb1b3cad02e974ac3955e7ff6d561ccaf37

  • SSDEEP

    384:TdR8iQLoFx1jW5sIiR5tGD4ZQWnYPLqeMndP0:Tr8X+GsHRGYFtdP0

Score
7/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      83b3a19812b3fcf08c55b39a75d882274f4a150c536923b9920b5270f5b46a12N.exe

    • Size

      24KB

    • MD5

      5d67356120099a52d50ddec61784aa10

    • SHA1

      c56b7e96a35acfcbea040a3c55e376242d178315

    • SHA256

      83b3a19812b3fcf08c55b39a75d882274f4a150c536923b9920b5270f5b46a12

    • SHA512

      a3d79c63a7a51b6aef2cfc38e0fc6a42253641bf20729533df42c533bc96ab15d59a7d212e4d41b05a368b4438887cb1b3cad02e974ac3955e7ff6d561ccaf37

    • SSDEEP

      384:TdR8iQLoFx1jW5sIiR5tGD4ZQWnYPLqeMndP0:Tr8X+GsHRGYFtdP0

    Score
    7/10
    defense_evasiondiscoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks