Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44

  • Size

    263KB

  • Sample

    221004-bw3pdsffam

  • MD5

    09b5a480340054ecbf6321b033509b50

  • SHA1

    300aa22d7a13ce3125d5a26d335058331df39c0b

  • SHA256

    ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44

  • SHA512

    bab66951e4ca463eff9d17117703775f080ea0f1f15b70cffb5b14e1e95963a9377480a02782c7c91f31e8d186feb53443957a4c5d298546f1faeff5f75a4afe

  • SSDEEP

    6144:6o2IQl76206kECVrlEoupaPMXZxQ1CD2laWQkS:32IQlG206kEslEoupaUxfDIavkS

Score
10/10

Malware Config

Targets

    • Target

      ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44

    • Size

      263KB

    • MD5

      09b5a480340054ecbf6321b033509b50

    • SHA1

      300aa22d7a13ce3125d5a26d335058331df39c0b

    • SHA256

      ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44

    • SHA512

      bab66951e4ca463eff9d17117703775f080ea0f1f15b70cffb5b14e1e95963a9377480a02782c7c91f31e8d186feb53443957a4c5d298546f1faeff5f75a4afe

    • SSDEEP

      6144:6o2IQl76206kECVrlEoupaPMXZxQ1CD2laWQkS:32IQlG206kEslEoupaUxfDIavkS

    Score
    10/10
    • Modifies firewall policy service

    • Modifies security service

    • Sets service image path in registry

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Adds Run key to start application

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks