Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e36a2257035f6cf81bc898fcc51f71166f681fe584bddf5380fbcd1dca583349

  • Size

    528KB

  • Sample

    221011-g81cpaaddn

  • MD5

    2c01bfaae19e3ca6e91382b9a0271c75

  • SHA1

    640d1535c6816cfc098964cecd1ab36567b3fe0a

  • SHA256

    e36a2257035f6cf81bc898fcc51f71166f681fe584bddf5380fbcd1dca583349

  • SHA512

    b2d7a533f2ad0372bcc3c1443377721110bff8e23a6d2266d693a9fc4c1e41b805fdafeb32701f1eb261564a750e2ebe15b47a745e394178222a1311f4eeb853

  • SSDEEP

    12288:O1T9O/qYv8/iWlq0bZBZsI+oG1KsFXyeIeoU7:Ak0bNs9FtyeI+7

Score
10/10

Malware Config

Targets

    • Target

      e36a2257035f6cf81bc898fcc51f71166f681fe584bddf5380fbcd1dca583349

    • Size

      528KB

    • MD5

      2c01bfaae19e3ca6e91382b9a0271c75

    • SHA1

      640d1535c6816cfc098964cecd1ab36567b3fe0a

    • SHA256

      e36a2257035f6cf81bc898fcc51f71166f681fe584bddf5380fbcd1dca583349

    • SHA512

      b2d7a533f2ad0372bcc3c1443377721110bff8e23a6d2266d693a9fc4c1e41b805fdafeb32701f1eb261564a750e2ebe15b47a745e394178222a1311f4eeb853

    • SSDEEP

      12288:O1T9O/qYv8/iWlq0bZBZsI+oG1KsFXyeIeoU7:Ak0bNs9FtyeI+7

    Score
    10/10
    • Modifies firewall policy service

    • Adds policy Run key to start application

    • Modifies Installed Components in the registry

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks