Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9f51c786b1308356014c0c18c3595a66d8ce951532f25d702e79f8e06629be1b

  • Size

    280KB

  • Sample

    221029-kz8t9aagfl

  • MD5

    e7c549e642ba46df04ba5092b188b1f0

  • SHA1

    22ca538e6e1f0129b19bb489c0e83894257c4c60

  • SHA256

    9f51c786b1308356014c0c18c3595a66d8ce951532f25d702e79f8e06629be1b

  • SHA512

    105785cac2f0dd95ef3ff3a85fe16997bf447456805394c4f281ac5d7cc55bbdaec8e966756a38160aa778ce1f51e7fc1ad8bb55baeebf98b8165474d0faa173

  • SSDEEP

    3072:TdVd2Hayox1aMVN0Q+KUYN3PSe57vsR1pEzm43vHRZ00jE2Ej5RZ00yAoqY5f7:5uHOL/UOPSe570Szp37E2EzBS

Score
10/10

Malware Config

Targets

    • Target

      9f51c786b1308356014c0c18c3595a66d8ce951532f25d702e79f8e06629be1b

    • Size

      280KB

    • MD5

      e7c549e642ba46df04ba5092b188b1f0

    • SHA1

      22ca538e6e1f0129b19bb489c0e83894257c4c60

    • SHA256

      9f51c786b1308356014c0c18c3595a66d8ce951532f25d702e79f8e06629be1b

    • SHA512

      105785cac2f0dd95ef3ff3a85fe16997bf447456805394c4f281ac5d7cc55bbdaec8e966756a38160aa778ce1f51e7fc1ad8bb55baeebf98b8165474d0faa173

    • SSDEEP

      3072:TdVd2Hayox1aMVN0Q+KUYN3PSe57vsR1pEzm43vHRZ00jE2Ej5RZ00yAoqY5f7:5uHOL/UOPSe570Szp37E2EzBS

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks