Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

15/03/2025, 14:32

250315-rwm7pszjt9 10

15/03/2025, 14:28

250315-rs8n8syrx8 10

General

  • Target

    R.E.P.O.v0.1.2.Multiplayer.zip

  • Size

    424.8MB

  • Sample

    250315-rwm7pszjt9

  • MD5

    74f7582f9efdef7f3b115c42e0d2c081

  • SHA1

    c3cf6b8b9183a638fcf585787141b3cdd2726fe9

  • SHA256

    4e299075536c52b7fe1d8076e6bef32e4a1b673d591b96cc53aab4b3d9717806

  • SHA512

    b706ad39fcef8d2fe20cf9cddf9644edabb37bc8e43c642861b7b7f75cd67089de8aebeec88bf5cc608ba46b78d39ff938ccdd587f3e71d337764f30e730df84

  • SSDEEP

    12582912:Bw4/eSrHryHtrWNpYLTc+6Cg3FTtOEWuK9kYF0I3uzstpI+/YkWXCieXFz:BzeSnSxVw3fO0y330+/YkWXCiWz

Malware Config

Targets

    • Target

      R.E.P.O.v0.1.2.Multiplayer.zip

    • Size

      424.8MB

    • MD5

      74f7582f9efdef7f3b115c42e0d2c081

    • SHA1

      c3cf6b8b9183a638fcf585787141b3cdd2726fe9

    • SHA256

      4e299075536c52b7fe1d8076e6bef32e4a1b673d591b96cc53aab4b3d9717806

    • SHA512

      b706ad39fcef8d2fe20cf9cddf9644edabb37bc8e43c642861b7b7f75cd67089de8aebeec88bf5cc608ba46b78d39ff938ccdd587f3e71d337764f30e730df84

    • SSDEEP

      12582912:Bw4/eSrHryHtrWNpYLTc+6Cg3FTtOEWuK9kYF0I3uzstpI+/YkWXCieXFz:BzeSnSxVw3fO0y330+/YkWXCiWz

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks