Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

MedalSetup...Y=.exe

windows7-x64

5

MedalSetup...Y=.exe

windows10-2004-x64

6

MedalSetup...Y=.exe

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MedalSetup.Mjc5OTEwODQ5LDEsbm9yZWY=.exe

  • Size

    143.1MB

  • Sample

    241013-kdsada1fmn

  • MD5

    1e622810ec211cc44426d5482a1d5d0f

  • SHA1

    da7e158a2092fc64664e260626c847eaee3684ed

  • SHA256

    d1273886847ed68aa98bb847cd0afcdb411ae57e80775ccf18ded854fcefc96c

  • SHA512

    6f55a70223e0f8c917145edf63a51d16c991537382f7fcacf5af9e143cae77df0d1265d24e829588d4fe535c8e644feb9034aeb8ef5b147ed093511aae9bb0a8

  • SSDEEP

    3145728:o5xGeJvRWj9zzug3X1rpMDM+a2LFdoeJoL4zc8HJvGWbpLJh4Ohojs:oXVQj9vdUaOd9qsddAs

Score
6/10
discoveryexecutionpersistence

Malware Config

Targets

    • Target

      MedalSetup.Mjc5OTEwODQ5LDEsbm9yZWY=.exe

    • Size

      143.1MB

    • MD5

      1e622810ec211cc44426d5482a1d5d0f

    • SHA1

      da7e158a2092fc64664e260626c847eaee3684ed

    • SHA256

      d1273886847ed68aa98bb847cd0afcdb411ae57e80775ccf18ded854fcefc96c

    • SHA512

      6f55a70223e0f8c917145edf63a51d16c991537382f7fcacf5af9e143cae77df0d1265d24e829588d4fe535c8e644feb9034aeb8ef5b147ed093511aae9bb0a8

    • SSDEEP

      3145728:o5xGeJvRWj9zzug3X1rpMDM+a2LFdoeJoL4zc8HJvGWbpLJh4Ohojs:oXVQj9vdUaOd9qsddAs

    Score
    6/10
    discoveryexecutionpersistence

    • Adds Run key to start application

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Command and Scripting Interpreter: PowerShell

      Using powershell.exe command.

      execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to get system information.

      execution

    • Enumerates processes with tasklist

      discovery
    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v15

Tasks