Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

77a7954d86...1f.exe

windows7-x64

8

77a7954d86...1f.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    77a7954d869a2b2cad474c03f35e032dcae85ecc2c9c14ae5d9c792cb76bcd1f

  • Size

    22KB

  • Sample

    221030-j65whaahe5

  • MD5

    5398dec8a7f56e001869dfa3acf64de0

  • SHA1

    434c2834db73043445f6e7df1bbd084ce3bdbbd6

  • SHA256

    77a7954d869a2b2cad474c03f35e032dcae85ecc2c9c14ae5d9c792cb76bcd1f

  • SHA512

    24891dec9ed7c4af6b323125d70d6679d8bcf7b14bc0ce0a864f6317b0998894e951ac07eb5c9af74bc426a0f5e37034c65f8f3962a2afeffa28d7943a2e78ce

  • SSDEEP

    384:PGCSeWyRaH6dJ09myKovqdxIKPNGB8Pi+orNTbt:eycadJnyC4GNGqa+orNTb

Score
8/10

Malware Config

Targets

    • Target

      77a7954d869a2b2cad474c03f35e032dcae85ecc2c9c14ae5d9c792cb76bcd1f

    • Size

      22KB

    • MD5

      5398dec8a7f56e001869dfa3acf64de0

    • SHA1

      434c2834db73043445f6e7df1bbd084ce3bdbbd6

    • SHA256

      77a7954d869a2b2cad474c03f35e032dcae85ecc2c9c14ae5d9c792cb76bcd1f

    • SHA512

      24891dec9ed7c4af6b323125d70d6679d8bcf7b14bc0ce0a864f6317b0998894e951ac07eb5c9af74bc426a0f5e37034c65f8f3962a2afeffa28d7943a2e78ce

    • SSDEEP

      384:PGCSeWyRaH6dJ09myKovqdxIKPNGB8Pi+orNTbt:eycadJnyC4GNGqa+orNTb

    Score
    8/10

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks