Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

731797e3f2...8e.exe

windows7-x64

10

731797e3f2...8e.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    731797e3f20ebd1de7ac5ebf3d4360bce5cca9f3e6050e175f5fff40391eb18e

  • Size

    128KB

  • Sample

    221003-bgkj9saae4

  • MD5

    6f7b0fbfb5a6aa1c54de5a83bbe40187

  • SHA1

    ef7b460e9f27828197114cc9000ce30f7fff8574

  • SHA256

    731797e3f20ebd1de7ac5ebf3d4360bce5cca9f3e6050e175f5fff40391eb18e

  • SHA512

    a3ef4ce6bada6c2445d9678347b15f72a5fd2883f24c5dc1132b4569aee04d64605a5e1552eca59ed83585c048f7d8f19c7e68ce19a4abfc778674f537719a5a

  • SSDEEP

    3072:sIeal2ZX8pP2Cn8Jcc64x6ohc7cZydst/hYb:Heal2ZAPtH47ABst/h

Score
10/10
persistence

Malware Config

Targets

    • Target

      731797e3f20ebd1de7ac5ebf3d4360bce5cca9f3e6050e175f5fff40391eb18e

    • Size

      128KB

    • MD5

      6f7b0fbfb5a6aa1c54de5a83bbe40187

    • SHA1

      ef7b460e9f27828197114cc9000ce30f7fff8574

    • SHA256

      731797e3f20ebd1de7ac5ebf3d4360bce5cca9f3e6050e175f5fff40391eb18e

    • SHA512

      a3ef4ce6bada6c2445d9678347b15f72a5fd2883f24c5dc1132b4569aee04d64605a5e1552eca59ed83585c048f7d8f19c7e68ce19a4abfc778674f537719a5a

    • SSDEEP

      3072:sIeal2ZX8pP2Cn8Jcc64x6ohc7cZydst/hYb:Heal2ZAPtH47ABst/h

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks