Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

sigmamoment.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sigmamoment.exe

  • Size

    228KB

  • Sample

    241006-kwef8swgmj

  • MD5

    a93296ffcb3c92ab54eefce5949abcb3

  • SHA1

    5858967f8c4a33f0210ecf98b0646de24448810b

  • SHA256

    eccdf34958e260fc4ad375b0d53ed569cea6bef64f8ddecb7c060e4ab8a11c1f

  • SHA512

    af6fa8333a19ec8ab21a1d78535d881f20499841c2df55695c388db2d0c791e9d3365d36be6c5bf5b906953fb71b88625a398047f74009dcd13730ba1f744ae5

  • SSDEEP

    3072:cES7d6UUU7i1yXA2GjaXFdM5y34mwtcmn9OYntFr1DXf8nQxtjwKNQTX:cESVYmH35wKmnTtFFf8nQDjwKNw

Score
7/10
defense_evasiondiscoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      sigmamoment.exe

    • Size

      228KB

    • MD5

      a93296ffcb3c92ab54eefce5949abcb3

    • SHA1

      5858967f8c4a33f0210ecf98b0646de24448810b

    • SHA256

      eccdf34958e260fc4ad375b0d53ed569cea6bef64f8ddecb7c060e4ab8a11c1f

    • SHA512

      af6fa8333a19ec8ab21a1d78535d881f20499841c2df55695c388db2d0c791e9d3365d36be6c5bf5b906953fb71b88625a398047f74009dcd13730ba1f744ae5

    • SSDEEP

      3072:cES7d6UUU7i1yXA2GjaXFdM5y34mwtcmn9OYntFr1DXf8nQxtjwKNQTX:cESVYmH35wKmnTtFFf8nQDjwKNw

    Score
    7/10
    defense_evasiondiscoverypersistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks