Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

f85b374fc1...10.exe

windows7-x64

10

f85b374fc1...10.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f85b374fc1740db2bb6b1dfaf51276efb45287e678011dc92f8865f4866d8910

  • Size

    400KB

  • Sample

    221020-pk6tkadef6

  • MD5

    90596b38302fa3036a151c74a00c25c1

  • SHA1

    d528bbbab87baafe88d8dba1cf048badfb3276ef

  • SHA256

    f85b374fc1740db2bb6b1dfaf51276efb45287e678011dc92f8865f4866d8910

  • SHA512

    941684bbf6942968ee96073305a79b4ee21eb3e12f48500f799e632195954cddb7ceb0ebe5b12a8b98a4ef0ddf15d7a90c1337498a953060d6140d351da2243a

  • SSDEEP

    3072:KR2xn3k0CdM1vabyzJYWqgT7a55Qhj0XVq+eeHs60IIeLSD4XM+TzHv/hTciu:KR2J0LS6VqZ5KE+eBcIiXM+n/5Bu

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      f85b374fc1740db2bb6b1dfaf51276efb45287e678011dc92f8865f4866d8910

    • Size

      400KB

    • MD5

      90596b38302fa3036a151c74a00c25c1

    • SHA1

      d528bbbab87baafe88d8dba1cf048badfb3276ef

    • SHA256

      f85b374fc1740db2bb6b1dfaf51276efb45287e678011dc92f8865f4866d8910

    • SHA512

      941684bbf6942968ee96073305a79b4ee21eb3e12f48500f799e632195954cddb7ceb0ebe5b12a8b98a4ef0ddf15d7a90c1337498a953060d6140d351da2243a

    • SSDEEP

      3072:KR2xn3k0CdM1vabyzJYWqgT7a55Qhj0XVq+eeHs60IIeLSD4XM+TzHv/hTciu:KR2J0LS6VqZ5KE+eBcIiXM+n/5Bu

    Score
    10/10
    persistenceupx

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks