Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44
-
Size
263KB
-
Sample
221004-bw3pdsffam
-
MD5
09b5a480340054ecbf6321b033509b50
-
SHA1
300aa22d7a13ce3125d5a26d335058331df39c0b
-
SHA256
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44
-
SHA512
bab66951e4ca463eff9d17117703775f080ea0f1f15b70cffb5b14e1e95963a9377480a02782c7c91f31e8d186feb53443957a4c5d298546f1faeff5f75a4afe
-
SSDEEP
6144:6o2IQl76206kECVrlEoupaPMXZxQ1CD2laWQkS:32IQlG206kEslEoupaUxfDIavkS
Static task
static1
Behavioral task
behavioral1
Sample
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44
-
Size
263KB
-
MD5
09b5a480340054ecbf6321b033509b50
-
SHA1
300aa22d7a13ce3125d5a26d335058331df39c0b
-
SHA256
ac7ba58951e58b802999d8829cdc1272e30c57412c87ee88afcc081585221a44
-
SHA512
bab66951e4ca463eff9d17117703775f080ea0f1f15b70cffb5b14e1e95963a9377480a02782c7c91f31e8d186feb53443957a4c5d298546f1faeff5f75a4afe
-
SSDEEP
6144:6o2IQl76206kECVrlEoupaPMXZxQ1CD2laWQkS:32IQlG206kEslEoupaUxfDIavkS
Score10/10-
Modifies firewall policy service
-
Modifies security service
-
Sets service image path in registry
-
Deletes itself
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-