Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

PO# 459ARG1672020.scr

windows7_x64

8

PO# 459ARG1672020.scr

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PO# 459ARG1672020.scr

  • Size

    709KB

  • Sample

    200716-9hxmldxsr6

  • MD5

    64e367c58afd3f0b145184e91dbbc808

  • SHA1

    a52a8e3d0051798672c435ac41cdfc8ac668a80a

  • SHA256

    6da9729b89ad6b0aff3f94e20754a9d46185fe0c9076aa950ddf8e4e720e5ef0

  • SHA512

    be5f65e091f171c3b749b421596906995b9280e573b2c05f78070cabd9d67fbf0550f59d78a32279ee0b967265f02d21b1caf8b96e1825c71eef9e7dbe78ac67

Score
8/10
persistence

Malware Config

Targets

    • Target

      PO# 459ARG1672020.scr

    • Size

      709KB

    • MD5

      64e367c58afd3f0b145184e91dbbc808

    • SHA1

      a52a8e3d0051798672c435ac41cdfc8ac668a80a

    • SHA256

      6da9729b89ad6b0aff3f94e20754a9d46185fe0c9076aa950ddf8e4e720e5ef0

    • SHA512

      be5f65e091f171c3b749b421596906995b9280e573b2c05f78070cabd9d67fbf0550f59d78a32279ee0b967265f02d21b1caf8b96e1825c71eef9e7dbe78ac67

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks