Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e741177a42bef4b9ba035b1a8bdc1a45bd5ba43fe468e3f6b663b48b0e740cd2
-
Size
634KB
-
Sample
221012-ssexlahca7
-
MD5
76a21d13dc46b8d41e0cbb57f21d5ac0
-
SHA1
cd4b721be961b58cc2fa524fa28416192b103acd
-
SHA256
e741177a42bef4b9ba035b1a8bdc1a45bd5ba43fe468e3f6b663b48b0e740cd2
-
SHA512
4c7d92a4d06db8316f31f2b1990f67cc3ffaf97c2957432a525cb52144ce9e2668c0201a75b024b61ce2386409dec04a485892928931ef53bd21e383c6d99f05
-
SSDEEP
6144:STv4sIND/AB4jYWoyGN2Ik5AfPjFWFNAy/7+dOYG+/WSZU6bewhrsRKcSTCn6:8ABhABEXotkI0A8AyzKOclfs3STCn
Malware Config
Targets
-
-
Target
e741177a42bef4b9ba035b1a8bdc1a45bd5ba43fe468e3f6b663b48b0e740cd2
-
Size
634KB
-
MD5
76a21d13dc46b8d41e0cbb57f21d5ac0
-
SHA1
cd4b721be961b58cc2fa524fa28416192b103acd
-
SHA256
e741177a42bef4b9ba035b1a8bdc1a45bd5ba43fe468e3f6b663b48b0e740cd2
-
SHA512
4c7d92a4d06db8316f31f2b1990f67cc3ffaf97c2957432a525cb52144ce9e2668c0201a75b024b61ce2386409dec04a485892928931ef53bd21e383c6d99f05
-
SSDEEP
6144:STv4sIND/AB4jYWoyGN2Ik5AfPjFWFNAy/7+dOYG+/WSZU6bewhrsRKcSTCn6:8ABhABEXotkI0A8AyzKOclfs3STCn
Score10/10-
Modifies WinLogon for persistence
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-