Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

ce36015d05...b7.exe

windows7-x64

8

ce36015d05...b7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ce36015d0576ca912cf1f24ea77f119e796a9a374237c5c23b40b46de6e0f0b7

  • Size

    77KB

  • Sample

    240930-c9x7haybre

  • MD5

    371f5f2a3f25f80696403e7123979d3f

  • SHA1

    d95e48815d3958dabec9d922791c82cd07ab591b

  • SHA256

    ce36015d0576ca912cf1f24ea77f119e796a9a374237c5c23b40b46de6e0f0b7

  • SHA512

    8cb4881d79e07f87b25203e8ecaec09334df64b88fa8ab1c353ee64c9fc1f8f2f83e7dde7a130b24189d86f5e5f09a4a2f6367f066796cc7528df47bd4137fd8

  • SSDEEP

    768:OrItKyw5WHXfQmjIiIk9ecAakMb96ZyXuDLdibfffsffff2ZZZZnAAAW:Or3Z5IfQmv81abyyXcZibfffsffffe

Score
8/10
defense_evasiondiscoveryevasion

Malware Config

Targets

    • Target

      ce36015d0576ca912cf1f24ea77f119e796a9a374237c5c23b40b46de6e0f0b7

    • Size

      77KB

    • MD5

      371f5f2a3f25f80696403e7123979d3f

    • SHA1

      d95e48815d3958dabec9d922791c82cd07ab591b

    • SHA256

      ce36015d0576ca912cf1f24ea77f119e796a9a374237c5c23b40b46de6e0f0b7

    • SHA512

      8cb4881d79e07f87b25203e8ecaec09334df64b88fa8ab1c353ee64c9fc1f8f2f83e7dde7a130b24189d86f5e5f09a4a2f6367f066796cc7528df47bd4137fd8

    • SSDEEP

      768:OrItKyw5WHXfQmjIiIk9ecAakMb96ZyXuDLdibfffsffff2ZZZZnAAAW:Or3Z5IfQmv81abyyXcZibfffsffffe

    Score
    8/10
    defense_evasiondiscoveryevasion

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks