Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

55c86f45c6...ee.exe

windows7-x64

8

55c86f45c6...ee.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    55c86f45c676ecdc2b49381bef2dae8b8bf1490a6acbb03932110f9bb47946ee

  • Size

    267KB

  • Sample

    220919-gc9aqaaeg8

  • MD5

    482dce56140663a6571135fdf7ddff06

  • SHA1

    4dfb52ef6e89b6847185dbc62ef2854c00636982

  • SHA256

    55c86f45c676ecdc2b49381bef2dae8b8bf1490a6acbb03932110f9bb47946ee

  • SHA512

    0dcb4600539a061ccd6c2d05ba597c2cb50a2f0d5f3b05988aef849ec152e8dba4a38e1bf5f01bd33d927d2c664801e81864849093992d614b7b5ca8a6679a3d

  • SSDEEP

    6144:S5O8QSO/9xxY3hkm1ZDLZA3M7KrD37lSCVzhhyc:j0OYGmvLZA3M7KrDJVn

Score
8/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      55c86f45c676ecdc2b49381bef2dae8b8bf1490a6acbb03932110f9bb47946ee

    • Size

      267KB

    • MD5

      482dce56140663a6571135fdf7ddff06

    • SHA1

      4dfb52ef6e89b6847185dbc62ef2854c00636982

    • SHA256

      55c86f45c676ecdc2b49381bef2dae8b8bf1490a6acbb03932110f9bb47946ee

    • SHA512

      0dcb4600539a061ccd6c2d05ba597c2cb50a2f0d5f3b05988aef849ec152e8dba4a38e1bf5f01bd33d927d2c664801e81864849093992d614b7b5ca8a6679a3d

    • SSDEEP

      6144:S5O8QSO/9xxY3hkm1ZDLZA3M7KrD37lSCVzhhyc:j0OYGmvLZA3M7KrDJVn

    Score
    8/10
    bootkitpersistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks