Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7ffffc8824...54.exe

windows7-x64

10

7ffffc8824...54.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7ffffc8824697aaefeb826f50ee9a2eef27c068abe0f9d74bd6fe4b667c55754

  • Size

    623KB

  • Sample

    221104-d9geesahc5

  • MD5

    9e92fdcce30e558761fed5a53a237620

  • SHA1

    acf2ce619a19b6f0fab81b9a7def73d093e61a9b

  • SHA256

    7ffffc8824697aaefeb826f50ee9a2eef27c068abe0f9d74bd6fe4b667c55754

  • SHA512

    589bdddc993a77c667f28c087c5dd54e09c6af2e983c7151f8359cc40b1a614923834a7cfa9f708c351102f40f82806a4e4653467b820118ce43bee771a603c9

  • SSDEEP

    12288:moxd1p2q4yysfWS0WFhZ28l2muHCys/HGPgoc0RkurOelhbuyH:moL2Ay2WuFhtduiysf1oouqeeyH

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      7ffffc8824697aaefeb826f50ee9a2eef27c068abe0f9d74bd6fe4b667c55754

    • Size

      623KB

    • MD5

      9e92fdcce30e558761fed5a53a237620

    • SHA1

      acf2ce619a19b6f0fab81b9a7def73d093e61a9b

    • SHA256

      7ffffc8824697aaefeb826f50ee9a2eef27c068abe0f9d74bd6fe4b667c55754

    • SHA512

      589bdddc993a77c667f28c087c5dd54e09c6af2e983c7151f8359cc40b1a614923834a7cfa9f708c351102f40f82806a4e4653467b820118ce43bee771a603c9

    • SSDEEP

      12288:moxd1p2q4yysfWS0WFhZ28l2muHCys/HGPgoc0RkurOelhbuyH:moL2Ay2WuFhtduiysf1oouqeeyH

    Score
    10/10
    evasionpersistencetrojan

    • Modifies system executable filetype association

      persistence

    • UAC bypass

      evasiontrojan

    • Deletes itself

    • Drops startup file

    • Adds Run key to start application

      persistence

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks