Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

91a55d98fb...3c.exe

windows7-x64

9

91a55d98fb...3c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    91a55d98fb7de6ee8a7712c38d6c1cd6ce5baba3cb47293642810622a760643c

  • Size

    521KB

  • Sample

    221002-e58tjsabdr

  • MD5

    587e14efa81dfd0e75b16b1f2a710680

  • SHA1

    5499d7df4f103a08c0550a74dc52b81a97f104b3

  • SHA256

    91a55d98fb7de6ee8a7712c38d6c1cd6ce5baba3cb47293642810622a760643c

  • SHA512

    3114a22daf2044fec002261395723bc0407f47bddbaf2c27bc8e4929e7b03e03096db21e8f82ad6781f5297567a72c3102e24fe9da1062764b5900e589180dcb

  • SSDEEP

    12288:p6GSN04Wn4H+/HxdY+HiCTjVehziKfFmi+K3Y2A/4:p6GSNBWnDvxdY+HZT5ehziWU/4

Score
9/10
bootkitpersistence

Malware Config

Targets

    • Target

      91a55d98fb7de6ee8a7712c38d6c1cd6ce5baba3cb47293642810622a760643c

    • Size

      521KB

    • MD5

      587e14efa81dfd0e75b16b1f2a710680

    • SHA1

      5499d7df4f103a08c0550a74dc52b81a97f104b3

    • SHA256

      91a55d98fb7de6ee8a7712c38d6c1cd6ce5baba3cb47293642810622a760643c

    • SHA512

      3114a22daf2044fec002261395723bc0407f47bddbaf2c27bc8e4929e7b03e03096db21e8f82ad6781f5297567a72c3102e24fe9da1062764b5900e589180dcb

    • SSDEEP

      12288:p6GSN04Wn4H+/HxdY+HiCTjVehziKfFmi+K3Y2A/4:p6GSNBWnDvxdY+HZT5ehziWU/4

    Score
    9/10
    bootkitpersistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks