Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a8dbd40709be3a20905a59a3f989835e3bbf8cd6e85cdc0566d74a04df3d3f37
-
Size
48KB
-
Sample
221106-mqkr6sacdp
-
MD5
2090353e83ca8cd79a63338ad47dd240
-
SHA1
9e8f144c8a04e2dffbb05cc13f520bd348efa062
-
SHA256
a8dbd40709be3a20905a59a3f989835e3bbf8cd6e85cdc0566d74a04df3d3f37
-
SHA512
55ce3d84ce0694dce7297f8c0912217786c40354fb8f7c4fba6ddfb7600c924076da1c4c2cf3730687ff1ab1a0b19e2e0b180013961074b1a06f63375cceecff
-
SSDEEP
768:z8t/grRTARvWagDWTrjMaoyFlAl5XVmdGTbjgoKkFYnv35BMCw:+gNATgDUrjYSALXVm6/FY58
Malware Config
Targets
-
-
Target
a8dbd40709be3a20905a59a3f989835e3bbf8cd6e85cdc0566d74a04df3d3f37
-
Size
48KB
-
MD5
2090353e83ca8cd79a63338ad47dd240
-
SHA1
9e8f144c8a04e2dffbb05cc13f520bd348efa062
-
SHA256
a8dbd40709be3a20905a59a3f989835e3bbf8cd6e85cdc0566d74a04df3d3f37
-
SHA512
55ce3d84ce0694dce7297f8c0912217786c40354fb8f7c4fba6ddfb7600c924076da1c4c2cf3730687ff1ab1a0b19e2e0b180013961074b1a06f63375cceecff
-
SSDEEP
768:z8t/grRTARvWagDWTrjMaoyFlAl5XVmdGTbjgoKkFYnv35BMCw:+gNATgDUrjYSALXVm6/FY58
Score10/10-
Modifies WinLogon for persistence
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Disables RegEdit via registry modification
-
Disables cmd.exe use via registry modification
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-