Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

2e35a81ea9...12.exe

windows7-x64

8

2e35a81ea9...12.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e35a81ea95bf6f83fcb8cb27bf085360f79abd01a88fa79406a82a4195efe12

  • Size

    105KB

  • Sample

    221020-zamcaadfa3

  • MD5

    80fcedc30fd7e9cf90c40d04bd06beba

  • SHA1

    c27ef96cf12f0a699a6f8b8eb2f0ce294be2b97e

  • SHA256

    2e35a81ea95bf6f83fcb8cb27bf085360f79abd01a88fa79406a82a4195efe12

  • SHA512

    59bb1cd9aec4e3d2ea553cbe3002c1ae0a7076523e807a81536ea15602954be6a129011787f0a6922cf9d2f8cbe62c6880e48eee1baf8dca6973947e04457f63

  • SSDEEP

    1536:fEizl72rH5hmMMXapYHF3LHRfP2FB+13vCjAWX:Mizt/MMapYlR+Bca

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      2e35a81ea95bf6f83fcb8cb27bf085360f79abd01a88fa79406a82a4195efe12

    • Size

      105KB

    • MD5

      80fcedc30fd7e9cf90c40d04bd06beba

    • SHA1

      c27ef96cf12f0a699a6f8b8eb2f0ce294be2b97e

    • SHA256

      2e35a81ea95bf6f83fcb8cb27bf085360f79abd01a88fa79406a82a4195efe12

    • SHA512

      59bb1cd9aec4e3d2ea553cbe3002c1ae0a7076523e807a81536ea15602954be6a129011787f0a6922cf9d2f8cbe62c6880e48eee1baf8dca6973947e04457f63

    • SSDEEP

      1536:fEizl72rH5hmMMXapYHF3LHRfP2FB+13vCjAWX:Mizt/MMapYlR+Bca

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Modifies WinLogon

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks