Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

a1a84928d0...bd.exe

windows7-x64

8

a1a84928d0...bd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a1a84928d017b4e1cb529f0f52c67ec9ef524e65792cc8a2108f1844e6c067bd

  • Size

    875KB

  • Sample

    221029-bmc3daege7

  • MD5

    0baf9124d7e983a20ee54e07b5e749d0

  • SHA1

    6f7b68a0899bffe7c4fc0da6a1f46027341a4c41

  • SHA256

    a1a84928d017b4e1cb529f0f52c67ec9ef524e65792cc8a2108f1844e6c067bd

  • SHA512

    4010ae23efaef45bf9527cb2eaf4ab71293da13dcac4d7f417b4098ce338ca063af0e82f3f2225e87bb150ca9009f8c9bfed3c21585c567ade669e153df6ae57

  • SSDEEP

    12288:FLozg61ikvvA3+Emo7ker5I/DbtSILfXOB3k3V/UnEIOKLS4QLDg:ug6osvA3L7ky5I34ca3UNyTOKLS4Q

Score
8/10
agilenetpersistence

Malware Config

Targets

    • Target

      a1a84928d017b4e1cb529f0f52c67ec9ef524e65792cc8a2108f1844e6c067bd

    • Size

      875KB

    • MD5

      0baf9124d7e983a20ee54e07b5e749d0

    • SHA1

      6f7b68a0899bffe7c4fc0da6a1f46027341a4c41

    • SHA256

      a1a84928d017b4e1cb529f0f52c67ec9ef524e65792cc8a2108f1844e6c067bd

    • SHA512

      4010ae23efaef45bf9527cb2eaf4ab71293da13dcac4d7f417b4098ce338ca063af0e82f3f2225e87bb150ca9009f8c9bfed3c21585c567ade669e153df6ae57

    • SSDEEP

      12288:FLozg61ikvvA3+Emo7ker5I/DbtSILfXOB3k3V/UnEIOKLS4QLDg:ug6osvA3L7ky5I34ca3UNyTOKLS4Q

    Score
    8/10
    agilenetpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks