Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

PO For-COV...ts.jar

windows7_x64

10

PO For-COV...ts.jar

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PO For-COVID-19 Products.jar

  • Size

    402KB

  • Sample

    200707-dneqt7dg1s

  • MD5

    1d5620ec8f5dc6de6d0c98c53efc9e5b

  • SHA1

    08fff82996a4590474ad95c43cf0ffb1df604f87

  • SHA256

    8fa51db15722c9e5ae2ff0344cea3442c090a70f99ebf382e65e39ff1645e37d

  • SHA512

    0d9501cdbb7213c37f370b867247a1b969c575068a4c45d72efdf559eb73a7baca173cef7df9b198fa7b38f6b735a47437ef794a3dc1cf8d96bf4fbebe625622

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      PO For-COVID-19 Products.jar

    • Size

      402KB

    • MD5

      1d5620ec8f5dc6de6d0c98c53efc9e5b

    • SHA1

      08fff82996a4590474ad95c43cf0ffb1df604f87

    • SHA256

      8fa51db15722c9e5ae2ff0344cea3442c090a70f99ebf382e65e39ff1645e37d

    • SHA512

      0d9501cdbb7213c37f370b867247a1b969c575068a4c45d72efdf559eb73a7baca173cef7df9b198fa7b38f6b735a47437ef794a3dc1cf8d96bf4fbebe625622

    Score
    10/10
    persistenceevasiontrojandiscovery

    • Modifies Windows Defender Real-time Protection settings

      evasiontrojan

    • Sets file execution options in registry

      persistence

    • Loads dropped DLL

    • Adds Run entry to start application

      persistence

    • Checks for installed software on the system

      discovery

    • Drops desktop.ini file(s)

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks