Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

bd10ca5931...d1.exe

windows7-x64

10

bd10ca5931...d1.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd10ca593172763d41b09f033ad4c90fc5cb243fbbb9d7d15925839ec16c16d1

  • Size

    45KB

  • Sample

    220919-ybyahaedb4

  • MD5

    020891f9564e88267b002a4731429b4b

  • SHA1

    154b6231dc8866917a633cb02814047df7b21df3

  • SHA256

    bd10ca593172763d41b09f033ad4c90fc5cb243fbbb9d7d15925839ec16c16d1

  • SHA512

    47cd5b3e2d45f12e686e0686f52018fdce0bfa696a200e6f8b70c9023f3b9b1005c80b86bd8afa8f1ff301d957f9b0b8b8963b819e62f82bd95558c8ebd76f55

  • SSDEEP

    768:r9FyRBrXcPo0LomyVXyEDel8CYk4HV8jr5AJFNcy259f5FwekD8V9LgctsWkc9B/:PyDjcPaRVEGtkMV8/CJFNcyE9bwe08Vf

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      bd10ca593172763d41b09f033ad4c90fc5cb243fbbb9d7d15925839ec16c16d1

    • Size

      45KB

    • MD5

      020891f9564e88267b002a4731429b4b

    • SHA1

      154b6231dc8866917a633cb02814047df7b21df3

    • SHA256

      bd10ca593172763d41b09f033ad4c90fc5cb243fbbb9d7d15925839ec16c16d1

    • SHA512

      47cd5b3e2d45f12e686e0686f52018fdce0bfa696a200e6f8b70c9023f3b9b1005c80b86bd8afa8f1ff301d957f9b0b8b8963b819e62f82bd95558c8ebd76f55

    • SSDEEP

      768:r9FyRBrXcPo0LomyVXyEDel8CYk4HV8jr5AJFNcy259f5FwekD8V9LgctsWkc9B/:PyDjcPaRVEGtkMV8/CJFNcyE9bwe08Vf

    Score
    10/10
    persistenceupx

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Drops file in Drivers directory

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks