Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e7595cf73c6614d5c2d1bb3131002f9140340c04e1bc5aac8b5f9313de8a4624N
-
Size
4.1MB
-
Sample
241003-rzg5vszgpn
-
MD5
2fa4f5089d443ac8c9ff22132a8a25f0
-
SHA1
c01473f2e14dfba1340e813f1983293a9a129e41
-
SHA256
e7595cf73c6614d5c2d1bb3131002f9140340c04e1bc5aac8b5f9313de8a4624
-
SHA512
ab3f4d8ab7e9eb561253c2612caf116f596d17da83752926f474910074b4ebc37b08b37d2e299279c576d7d48864315c0932390310a508ea2a6b3550bcfe1ce8
-
SSDEEP
98304:g2mDMmD2mDrc2mDMmD2mDdMmD2mDAc2mDMmD2mDrcG:g2mDMmD2mDrc2mDMmD2mDdMmD2mDAc2w
Malware Config
Targets
-
-
Target
e7595cf73c6614d5c2d1bb3131002f9140340c04e1bc5aac8b5f9313de8a4624N
-
Size
4.1MB
-
MD5
2fa4f5089d443ac8c9ff22132a8a25f0
-
SHA1
c01473f2e14dfba1340e813f1983293a9a129e41
-
SHA256
e7595cf73c6614d5c2d1bb3131002f9140340c04e1bc5aac8b5f9313de8a4624
-
SHA512
ab3f4d8ab7e9eb561253c2612caf116f596d17da83752926f474910074b4ebc37b08b37d2e299279c576d7d48864315c0932390310a508ea2a6b3550bcfe1ce8
-
SSDEEP
98304:g2mDMmD2mDrc2mDMmD2mDdMmD2mDAc2mDMmD2mDrcG:g2mDMmD2mDrc2mDMmD2mDdMmD2mDAc2w
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Impair Defenses: Safe Mode Boot
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Defense Evasion
Hide Artifacts
2Hidden Files and Directories
2Impair Defenses
1Safe Mode Boot
1Modify Registry
5