Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    393114579175167727.js

  • Size

    94KB

  • Sample

    241017-xncznazglb

  • MD5

    57e8200e9cfde4618e5b11793719e718

  • SHA1

    c5f642755ea7e1933c032330a20fff5552dd64e4

  • SHA256

    404341b290e56b21c74d5768a98580813f5e81a5ef2e97e1af7aec6cb2a719b0

  • SHA512

    b275d876a954c5d22e8a3bbf918ee85b1de7bac387377ad41dc00c67de0b35962750a0188a78badef943bd8a415fd1a13e9b888222d535e81425c4c825c89e04

  • SSDEEP

    1536:mmM7EDQxL7TpGPH03S1wXMWLYJNNM/Us5MWvl+MPMdRX2MJ:mmM7NGPU3jMDMRMWvl+M0d12MJ

Malware Config

Targets

    • Target

      393114579175167727.js

    • Size

      94KB

    • MD5

      57e8200e9cfde4618e5b11793719e718

    • SHA1

      c5f642755ea7e1933c032330a20fff5552dd64e4

    • SHA256

      404341b290e56b21c74d5768a98580813f5e81a5ef2e97e1af7aec6cb2a719b0

    • SHA512

      b275d876a954c5d22e8a3bbf918ee85b1de7bac387377ad41dc00c67de0b35962750a0188a78badef943bd8a415fd1a13e9b888222d535e81425c4c825c89e04

    • SSDEEP

      1536:mmM7EDQxL7TpGPH03S1wXMWLYJNNM/Us5MWvl+MPMdRX2MJ:mmM7NGPU3jMDMRMWvl+M0d12MJ

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Obfuscated Files or Information: Command Obfuscation

      Adversaries may obfuscate content during command execution to impede detection.

MITRE ATT&CK Enterprise v15

Tasks