Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b

  • Size

    160KB

  • Sample

    221003-tq7p9sedcr

  • MD5

    6e59fcb0c2c2a5c02daa1413f5092310

  • SHA1

    74917617ce9d83d12fc73e2ab6bbd8e2a95a7b26

  • SHA256

    877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b

  • SHA512

    ae87bda425aef19f6cc6e3004c115687da05c53f71b735eef94dbeeb8ed630133c49bc9c902e157548f6ae84cde6dc0e00d051f830c6714f0b95a625653e666a

  • SSDEEP

    1536:3+gDbKlmyJKz5jR7766dxocisPfDsCUjhe+SPBp9oEoTTLgY++++1sY+++++ZDdM:3xbkuVbvLn7Uj3

Malware Config

Targets

    • Target

      877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b

    • Size

      160KB

    • MD5

      6e59fcb0c2c2a5c02daa1413f5092310

    • SHA1

      74917617ce9d83d12fc73e2ab6bbd8e2a95a7b26

    • SHA256

      877c97b644ff93cbda33f41a20878d840e008fd4a41fa283a6897f9c5789035b

    • SHA512

      ae87bda425aef19f6cc6e3004c115687da05c53f71b735eef94dbeeb8ed630133c49bc9c902e157548f6ae84cde6dc0e00d051f830c6714f0b95a625653e666a

    • SSDEEP

      1536:3+gDbKlmyJKz5jR7766dxocisPfDsCUjhe+SPBp9oEoTTLgY++++1sY+++++ZDdM:3xbkuVbvLn7Uj3

    • Adds policy Run key to start application

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks whether UAC is enabled

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks