Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    db5cf9d0b882c6a918d4e2f290a48e241a75d376a1e53c894383d1eb33ad2995

  • Size

    192KB

  • Sample

    221011-ab462sfbbl

  • MD5

    7565c3c29e79a24dd0e6f5894ecb9450

  • SHA1

    ab1156f2af054838e14f42839e25d0e619ba796a

  • SHA256

    db5cf9d0b882c6a918d4e2f290a48e241a75d376a1e53c894383d1eb33ad2995

  • SHA512

    e623dee382057752bd401aa64b5efaeb807f82db8a4913f4df3e8b919faf98513d744a689a256c867ae1f16d87999300d6c40e0a7e026388b4b9e2477b58d5dd

  • SSDEEP

    3072:oi+bQQgdYR4sOcBRdQZd5g18xJ5kOpaPM9erTRcm4esUV:Sb/gdY7HCKKJNaEoPKmJ

Score
10/10

Malware Config

Targets

    • Target

      db5cf9d0b882c6a918d4e2f290a48e241a75d376a1e53c894383d1eb33ad2995

    • Size

      192KB

    • MD5

      7565c3c29e79a24dd0e6f5894ecb9450

    • SHA1

      ab1156f2af054838e14f42839e25d0e619ba796a

    • SHA256

      db5cf9d0b882c6a918d4e2f290a48e241a75d376a1e53c894383d1eb33ad2995

    • SHA512

      e623dee382057752bd401aa64b5efaeb807f82db8a4913f4df3e8b919faf98513d744a689a256c867ae1f16d87999300d6c40e0a7e026388b4b9e2477b58d5dd

    • SSDEEP

      3072:oi+bQQgdYR4sOcBRdQZd5g18xJ5kOpaPM9erTRcm4esUV:Sb/gdY7HCKKJNaEoPKmJ

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks