Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6a3b21.msi
-
Size
1.9MB
-
Sample
241014-z8c69s1dlj
-
MD5
38a5c5f8df9a03003650d975d5b7bc0f
-
SHA1
b961e5ed74f2297b3425c1cb2b5cd68dba622ddc
-
SHA256
82f58171b159067bd974be1c356cdcc15a668fa0f89455a4959bb2c9fe12b306
-
SHA512
44ff21728e2deb0f56c197f573283307580640a5af819877808681d191f428cafc280ea4636ec566e6ccd6ccd97f04985d99a73f9099a46ec1fe7fe3e3f1f7c7
-
SSDEEP
24576:Pt9cpVDhiMtsHyJuHQDkXPe9+noxv1Hn:YpRhiMiHeuqkfe9pxv1H
Malware Config
Targets
-
-
Target
6a3b21.msi
-
Size
1.9MB
-
MD5
38a5c5f8df9a03003650d975d5b7bc0f
-
SHA1
b961e5ed74f2297b3425c1cb2b5cd68dba622ddc
-
SHA256
82f58171b159067bd974be1c356cdcc15a668fa0f89455a4959bb2c9fe12b306
-
SHA512
44ff21728e2deb0f56c197f573283307580640a5af819877808681d191f428cafc280ea4636ec566e6ccd6ccd97f04985d99a73f9099a46ec1fe7fe3e3f1f7c7
-
SSDEEP
24576:Pt9cpVDhiMtsHyJuHQDkXPe9+noxv1Hn:YpRhiMiHeuqkfe9pxv1H
Score7/10-
Modifies file permissions
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
1System Binary Proxy Execution
1Msiexec
1