Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

18dcaead28...12.exe

windows7-x64

8

18dcaead28...12.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    18dcaead28247cd23490af8bdef9c48945de43db2b1cbda92ed069d074ce5612

  • Size

    184KB

  • Sample

    220919-apjghacebk

  • MD5

    9255d99c1c4eb4b7b4aabdb4aae1dec6

  • SHA1

    8c55e6b16241b7022e8f9dce03482c0c87e9aaf0

  • SHA256

    18dcaead28247cd23490af8bdef9c48945de43db2b1cbda92ed069d074ce5612

  • SHA512

    8ba91ec692efa2050f376eeec65f38f68e649100001311873f6426908f9892dd1231f98273827f4c677317b12afd3c7f4bd07419ef1b0d2f713ec1011f49c07c

  • SSDEEP

    3072:++V2Uz616rBNEbGdtV8P7xWmbsSw1UKqjlU3YZhIrcNCcN5Q4jkXqSbo4nvSMgHt:B2Uz7MEExf+IZ2qLGqSbokvSMgbD0Re

Score
8/10

Malware Config

Targets

    • Target

      18dcaead28247cd23490af8bdef9c48945de43db2b1cbda92ed069d074ce5612

    • Size

      184KB

    • MD5

      9255d99c1c4eb4b7b4aabdb4aae1dec6

    • SHA1

      8c55e6b16241b7022e8f9dce03482c0c87e9aaf0

    • SHA256

      18dcaead28247cd23490af8bdef9c48945de43db2b1cbda92ed069d074ce5612

    • SHA512

      8ba91ec692efa2050f376eeec65f38f68e649100001311873f6426908f9892dd1231f98273827f4c677317b12afd3c7f4bd07419ef1b0d2f713ec1011f49c07c

    • SSDEEP

      3072:++V2Uz616rBNEbGdtV8P7xWmbsSw1UKqjlU3YZhIrcNCcN5Q4jkXqSbo4nvSMgHt:B2Uz7MEExf+IZ2qLGqSbokvSMgbD0Re

    Score
    8/10

    • Executes dropped EXE

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks