Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6a3b21.msi

  • Size

    1.9MB

  • Sample

    241014-z8c69s1dlj

  • MD5

    38a5c5f8df9a03003650d975d5b7bc0f

  • SHA1

    b961e5ed74f2297b3425c1cb2b5cd68dba622ddc

  • SHA256

    82f58171b159067bd974be1c356cdcc15a668fa0f89455a4959bb2c9fe12b306

  • SHA512

    44ff21728e2deb0f56c197f573283307580640a5af819877808681d191f428cafc280ea4636ec566e6ccd6ccd97f04985d99a73f9099a46ec1fe7fe3e3f1f7c7

  • SSDEEP

    24576:Pt9cpVDhiMtsHyJuHQDkXPe9+noxv1Hn:YpRhiMiHeuqkfe9pxv1H

Malware Config

Targets

    • Target

      6a3b21.msi

    • Size

      1.9MB

    • MD5

      38a5c5f8df9a03003650d975d5b7bc0f

    • SHA1

      b961e5ed74f2297b3425c1cb2b5cd68dba622ddc

    • SHA256

      82f58171b159067bd974be1c356cdcc15a668fa0f89455a4959bb2c9fe12b306

    • SHA512

      44ff21728e2deb0f56c197f573283307580640a5af819877808681d191f428cafc280ea4636ec566e6ccd6ccd97f04985d99a73f9099a46ec1fe7fe3e3f1f7c7

    • SSDEEP

      24576:Pt9cpVDhiMtsHyJuHQDkXPe9+noxv1Hn:YpRhiMiHeuqkfe9pxv1H

    • Modifies file permissions

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks