Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1a9ab5de7c...70.exe

windows7-x64

6

1a9ab5de7c...70.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a9ab5de7c14329e152febb30ac3506f26c216a1a805297f364f6fe6489fed70

  • Size

    185KB

  • Sample

    221029-xjktpsbdfr

  • MD5

    84192a14941719c58b9b3dd0fc7fc8dd

  • SHA1

    9067d5a032681f14b986c0bba2c5ab7de04ed5a5

  • SHA256

    1a9ab5de7c14329e152febb30ac3506f26c216a1a805297f364f6fe6489fed70

  • SHA512

    92adae4cd21ae50b9165064b443bb8d2e6a9cfd2ebfdbfce2ed13861c35c213b2a9a1f7a48e683295e31d108ae41861f9d7fabae25cf2797e49dd5f0211ffabe

  • SSDEEP

    3072:coXp+tBTr+4oyq96HM0XUGXU2Fo21364EoiJeeI+StSqYLj8MfseRns1Z7MdvF1b:fXp+t5+42nVW5GJZ2tNYLj8Mfs6gqvFF

Score
6/10
bootkitpersistence

Malware Config

Targets

    • Target

      1a9ab5de7c14329e152febb30ac3506f26c216a1a805297f364f6fe6489fed70

    • Size

      185KB

    • MD5

      84192a14941719c58b9b3dd0fc7fc8dd

    • SHA1

      9067d5a032681f14b986c0bba2c5ab7de04ed5a5

    • SHA256

      1a9ab5de7c14329e152febb30ac3506f26c216a1a805297f364f6fe6489fed70

    • SHA512

      92adae4cd21ae50b9165064b443bb8d2e6a9cfd2ebfdbfce2ed13861c35c213b2a9a1f7a48e683295e31d108ae41861f9d7fabae25cf2797e49dd5f0211ffabe

    • SSDEEP

      3072:coXp+tBTr+4oyq96HM0XUGXU2Fo21364EoiJeeI+StSqYLj8MfseRns1Z7MdvF1b:fXp+t5+42nVW5GJZ2tNYLj8Mfs6gqvFF

    Score
    6/10
    bootkitpersistence

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks