Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7184fbf90c60cd27311eaa98fb6fb24764b8144da74099c3248b158c73f51555

  • Size

    447KB

  • Sample

    221020-2xrxdsabdq

  • MD5

    4373d593663c8a9bbe7879cb795c6b5d

  • SHA1

    57c807c68ae0faa7fb5c3a6d51769b6381e134e3

  • SHA256

    7184fbf90c60cd27311eaa98fb6fb24764b8144da74099c3248b158c73f51555

  • SHA512

    9141ddda68bcc3e70f4f25326d4dad9f87ce911c0d44e956a7ae49f73b27ffd8a5a2df4e9a8d9037d91ce123b62c958f62fafefa384bf47e44c4940b420d162e

  • SSDEEP

    12288:v6Wq4aaE6KwyF5L0Y2D1PqLDoQZwTaFOGz:tthEVaPqLsdGB

Score
10/10

Malware Config

Targets

    • Target

      7184fbf90c60cd27311eaa98fb6fb24764b8144da74099c3248b158c73f51555

    • Size

      447KB

    • MD5

      4373d593663c8a9bbe7879cb795c6b5d

    • SHA1

      57c807c68ae0faa7fb5c3a6d51769b6381e134e3

    • SHA256

      7184fbf90c60cd27311eaa98fb6fb24764b8144da74099c3248b158c73f51555

    • SHA512

      9141ddda68bcc3e70f4f25326d4dad9f87ce911c0d44e956a7ae49f73b27ffd8a5a2df4e9a8d9037d91ce123b62c958f62fafefa384bf47e44c4940b420d162e

    • SSDEEP

      12288:v6Wq4aaE6KwyF5L0Y2D1PqLDoQZwTaFOGz:tthEVaPqLsdGB

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Enterprise v6

Tasks