Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bd73c4c13ebc824c10c9d1aa4a6bb377093b484ddafcf09a47ec0b89ef8f45d3

  • Size

    31KB

  • Sample

    221106-fd6esachg7

  • MD5

    09bc1d1496d8b9f95c980449c7b47dd2

  • SHA1

    7e7d0974c77d2f86e0d3e4e2888780c7b5d6ee59

  • SHA256

    bd73c4c13ebc824c10c9d1aa4a6bb377093b484ddafcf09a47ec0b89ef8f45d3

  • SHA512

    27139faff2e9226a46e7fedbd087fe6d77fa657ce7f8aa870468923436558f9bdad958e35f9319b0a315b0af84e67f49f856ab1920ede9132fbb1da5738b1efe

  • SSDEEP

    768:wL/tTpH9fr5+/yJoVOMTaj7GJDHUlIr5mdnbcuyD7UIuZ:6t59fr+gljqHUyFgnouy8DZ

Malware Config

Targets

    • Target

      bd73c4c13ebc824c10c9d1aa4a6bb377093b484ddafcf09a47ec0b89ef8f45d3

    • Size

      31KB

    • MD5

      09bc1d1496d8b9f95c980449c7b47dd2

    • SHA1

      7e7d0974c77d2f86e0d3e4e2888780c7b5d6ee59

    • SHA256

      bd73c4c13ebc824c10c9d1aa4a6bb377093b484ddafcf09a47ec0b89ef8f45d3

    • SHA512

      27139faff2e9226a46e7fedbd087fe6d77fa657ce7f8aa870468923436558f9bdad958e35f9319b0a315b0af84e67f49f856ab1920ede9132fbb1da5738b1efe

    • SSDEEP

      768:wL/tTpH9fr5+/yJoVOMTaj7GJDHUlIr5mdnbcuyD7UIuZ:6t59fr+gljqHUyFgnouy8DZ

    • UAC bypass

    • Stops running service(s)

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks whether UAC is enabled

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks