Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

d1510aab74...a0.exe

windows7-x64

9

d1510aab74...a0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d1510aab74c8a291d974693e1135d6cb7fc528ab8435c8b85445e0ab4c10e8a0

  • Size

    309KB

  • Sample

    221010-3sexpseea8

  • MD5

    7c28029b0b4a2089cba31e348574759b

  • SHA1

    334deb253ad405ce546becf2f0b4b00921a24a40

  • SHA256

    d1510aab74c8a291d974693e1135d6cb7fc528ab8435c8b85445e0ab4c10e8a0

  • SHA512

    21ff56d69d014ed2535a10fd47fe60c5ddc97d553980df60040f79736778183713af7277dc19ed1a2007c649ee0b944b2680758a0a350b6d09ec261e4f18646a

  • SSDEEP

    6144:/dI/i8Q5c6QHFZlxx3EADdtJ3IRIsKzyIkjE4sakk/Yk:2xHFZlx5E2tJgIsKDIE4Np

Score
9/10
persistence

Malware Config

Targets

    • Target

      d1510aab74c8a291d974693e1135d6cb7fc528ab8435c8b85445e0ab4c10e8a0

    • Size

      309KB

    • MD5

      7c28029b0b4a2089cba31e348574759b

    • SHA1

      334deb253ad405ce546becf2f0b4b00921a24a40

    • SHA256

      d1510aab74c8a291d974693e1135d6cb7fc528ab8435c8b85445e0ab4c10e8a0

    • SHA512

      21ff56d69d014ed2535a10fd47fe60c5ddc97d553980df60040f79736778183713af7277dc19ed1a2007c649ee0b944b2680758a0a350b6d09ec261e4f18646a

    • SSDEEP

      6144:/dI/i8Q5c6QHFZlxx3EADdtJ3IRIsKzyIkjE4sakk/Yk:2xHFZlx5E2tJgIsKDIE4Np

    Score
    9/10
    persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks