Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

0c5eb9087b...d7.exe

windows7-x64

8

0c5eb9087b...d7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0c5eb9087bda190cd35c96cb53b90037cf36216daf6a8f10cd382bc4cf1ac5d7

  • Size

    448KB

  • Sample

    221030-gcm3gsecb8

  • MD5

    a29c7c2d94afcf5aeb5b65ddbd78fbb0

  • SHA1

    8e2edfc513e47f00c874abda5c5cccae79310cc1

  • SHA256

    0c5eb9087bda190cd35c96cb53b90037cf36216daf6a8f10cd382bc4cf1ac5d7

  • SHA512

    8b1b161818527b3ed3cf019f6669ac1bfc1759ef8b8250262fa2332372ac5899d50e2ae6c5aa96cd02dfef87fd46caede6890d00dc0add9a0d2b8f6e8726b48a

  • SSDEEP

    12288:cgDM2i8NvDqqobjPxiEmgyNt8iseQGbg56hmsPqtPjhp:hDG8NvVobzxiEmgyj8eJbgghmsPi9p

Score
8/10
microsoftpersistencephishingupx

Malware Config

Targets

    • Target

      0c5eb9087bda190cd35c96cb53b90037cf36216daf6a8f10cd382bc4cf1ac5d7

    • Size

      448KB

    • MD5

      a29c7c2d94afcf5aeb5b65ddbd78fbb0

    • SHA1

      8e2edfc513e47f00c874abda5c5cccae79310cc1

    • SHA256

      0c5eb9087bda190cd35c96cb53b90037cf36216daf6a8f10cd382bc4cf1ac5d7

    • SHA512

      8b1b161818527b3ed3cf019f6669ac1bfc1759ef8b8250262fa2332372ac5899d50e2ae6c5aa96cd02dfef87fd46caede6890d00dc0add9a0d2b8f6e8726b48a

    • SSDEEP

      12288:cgDM2i8NvDqqobjPxiEmgyNt8iseQGbg56hmsPqtPjhp:hDG8NvVobzxiEmgyj8eJbgghmsPi9p

    Score
    8/10
    upxmicrosoftpersistencephishing

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks