Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3dd546ce222d29875feadcc0c32345e5b919d1911b7e563b689e8c9d53f01446N
-
Size
180KB
-
Sample
241002-wtvk8atcpf
-
MD5
76d46fe1fb45e400704b83dc1814d800
-
SHA1
d8bb4bb086fb0be7ee76163d351b168687c6f180
-
SHA256
3dd546ce222d29875feadcc0c32345e5b919d1911b7e563b689e8c9d53f01446
-
SHA512
7b25b20d51a079cbbd8f7326ed46b6ecb8927204db42ad4f63448888ad4f8daea3055c3987a26e7b75c0533cec7ca7ea82ce376c005e144bb4d2ac16848653ec
-
SSDEEP
1536:XmXPldcxKc8NMgeGU4AeGL0TxpKwmf8y0IpWur+2RPFYSUxBphF0QSHy:2ffcSg4dgxkcrhRVUHF0
Malware Config
Targets
-
-
Target
3dd546ce222d29875feadcc0c32345e5b919d1911b7e563b689e8c9d53f01446N
-
Size
180KB
-
MD5
76d46fe1fb45e400704b83dc1814d800
-
SHA1
d8bb4bb086fb0be7ee76163d351b168687c6f180
-
SHA256
3dd546ce222d29875feadcc0c32345e5b919d1911b7e563b689e8c9d53f01446
-
SHA512
7b25b20d51a079cbbd8f7326ed46b6ecb8927204db42ad4f63448888ad4f8daea3055c3987a26e7b75c0533cec7ca7ea82ce376c005e144bb4d2ac16848653ec
-
SSDEEP
1536:XmXPldcxKc8NMgeGU4AeGL0TxpKwmf8y0IpWur+2RPFYSUxBphF0QSHy:2ffcSg4dgxkcrhRVUHF0
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2