Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

8

d4043c6a00...b7.exe

windows7-x64

9

d4043c6a00...b7.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4043c6a00f5552c4b000121c6faf30908fb1f217888b69826f854f7b1a9d4b7

  • Size

    182KB

  • Sample

    221002-e3w2zaaagp

  • MD5

    6e466bd51a46678ad515defd5e3ebd5a

  • SHA1

    17fb1f12c125df98e6abc35b093e549e32bcac97

  • SHA256

    d4043c6a00f5552c4b000121c6faf30908fb1f217888b69826f854f7b1a9d4b7

  • SHA512

    957f77df618227a716805c294b019fa2214af9c53f3172f761d06cd0e7cbd65d0c3802f383d4faad5c822d791d2a5ab68a87ea7f939e6513478c735d344a680e

  • SSDEEP

    3072:ze3DM17EL+Zq29/fpvKB2e2jrHHp1EED14akBVWV5x7jFUO/pRvCHG3Dz:ze3DswLn2PI2xrHFD1fk6VbfFz/pxCuH

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      d4043c6a00f5552c4b000121c6faf30908fb1f217888b69826f854f7b1a9d4b7

    • Size

      182KB

    • MD5

      6e466bd51a46678ad515defd5e3ebd5a

    • SHA1

      17fb1f12c125df98e6abc35b093e549e32bcac97

    • SHA256

      d4043c6a00f5552c4b000121c6faf30908fb1f217888b69826f854f7b1a9d4b7

    • SHA512

      957f77df618227a716805c294b019fa2214af9c53f3172f761d06cd0e7cbd65d0c3802f383d4faad5c822d791d2a5ab68a87ea7f939e6513478c735d344a680e

    • SSDEEP

      3072:ze3DM17EL+Zq29/fpvKB2e2jrHHp1EED14akBVWV5x7jFUO/pRvCHG3Dz:ze3DswLn2PI2xrHFD1fk6VbfFz/pxCuH

    Score
    9/10
    persistenceupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks