Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8bfeb93c62f2be6d32e2f1b2dcc84f7eafca7066703d5f91fae10415953c97d5

  • Size

    116KB

  • Sample

    221020-phhnysdbhn

  • MD5

    a0126c733060ad47f2d32b0f76e6ae16

  • SHA1

    233987ceb51c2821065ef5685e166d822722170c

  • SHA256

    8bfeb93c62f2be6d32e2f1b2dcc84f7eafca7066703d5f91fae10415953c97d5

  • SHA512

    4dfbbb15fbc9b1fcf07937a3aa00802ec2b5981d6eeb0d1e34a56d0680bd3c00535816289bd07a9e2110e18a086aa6f13e6afa8e79e9dc7407034b4c53ad5f5b

  • SSDEEP

    1536:QMASiLNFZdO/CLX7SNOJRUo/RhGZr83hYbIg/g1kFeTbigPYv2lps8h+qc4cW7+U:Q3vO/CL2GPr3hYbIg/IEeSEYv2nhu43

Malware Config

Targets

    • Target

      8bfeb93c62f2be6d32e2f1b2dcc84f7eafca7066703d5f91fae10415953c97d5

    • Size

      116KB

    • MD5

      a0126c733060ad47f2d32b0f76e6ae16

    • SHA1

      233987ceb51c2821065ef5685e166d822722170c

    • SHA256

      8bfeb93c62f2be6d32e2f1b2dcc84f7eafca7066703d5f91fae10415953c97d5

    • SHA512

      4dfbbb15fbc9b1fcf07937a3aa00802ec2b5981d6eeb0d1e34a56d0680bd3c00535816289bd07a9e2110e18a086aa6f13e6afa8e79e9dc7407034b4c53ad5f5b

    • SSDEEP

      1536:QMASiLNFZdO/CLX7SNOJRUo/RhGZr83hYbIg/g1kFeTbigPYv2lps8h+qc4cW7+U:Q3vO/CL2GPr3hYbIg/IEeSEYv2nhu43

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Executes dropped EXE

    • Sets DLL path for service in the registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks