Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

a90962d6b8...8d.exe

windows7-x64

10

a90962d6b8...8d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a90962d6b8b3bf7cfb035c5cd54bd7b324d6dd0cada7cb737b63ec9655d24f8d

  • Size

    296KB

  • Sample

    221029-zky4tsfban

  • MD5

    a3598ca9a55a373fce676421a2b6d850

  • SHA1

    6d1d9b9319a25fa518a8ae6897207a8740c9199e

  • SHA256

    a90962d6b8b3bf7cfb035c5cd54bd7b324d6dd0cada7cb737b63ec9655d24f8d

  • SHA512

    5511119c0ac8618ad5fd39b5783a413b5e60e3f0899b0a5e2d5ae96b60af7df2c826fbd3d2d2fa55f1b040e8100e050910e2dd402641afff9b8f693ae35b3921

  • SSDEEP

    6144:WrvX/eSqjc3HsTaxoqkt+MbgYcy4j148ZJV:wX/eOyaiqktYYcy+x/

Score
10/10
persistence

Malware Config

Targets

    • Target

      a90962d6b8b3bf7cfb035c5cd54bd7b324d6dd0cada7cb737b63ec9655d24f8d

    • Size

      296KB

    • MD5

      a3598ca9a55a373fce676421a2b6d850

    • SHA1

      6d1d9b9319a25fa518a8ae6897207a8740c9199e

    • SHA256

      a90962d6b8b3bf7cfb035c5cd54bd7b324d6dd0cada7cb737b63ec9655d24f8d

    • SHA512

      5511119c0ac8618ad5fd39b5783a413b5e60e3f0899b0a5e2d5ae96b60af7df2c826fbd3d2d2fa55f1b040e8100e050910e2dd402641afff9b8f693ae35b3921

    • SSDEEP

      6144:WrvX/eSqjc3HsTaxoqkt+MbgYcy4j148ZJV:wX/eOyaiqktYYcy+x/

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks