Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bef8c1e15c19563df8da3af8fdc6602fabbc4f9390d4a91c367bac7556c3a830

  • Size

    819KB

  • Sample

    221106-x49cssghe5

  • MD5

    0843e1bebcb87dc740e2a1c0fec6080a

  • SHA1

    84a4f788a8e79a5bf24a1d96648abc3c76c0f3fa

  • SHA256

    bef8c1e15c19563df8da3af8fdc6602fabbc4f9390d4a91c367bac7556c3a830

  • SHA512

    b5a9e5eafbfce5998e7e33aef46664cf3168d3a207c5cfe72c6bbf377f10afad610a19b0c060f08d6261be03fa695b39d8347fee9899fcce84674fd691c31982

  • SSDEEP

    6144:iv27jyGy1/pEli1TQXG3QsE0VdQTQRwvwjvaIy7snJ96e8NBRs:6/Fpl1UXGRVpw4jyIygnJ90TS

Score
8/10
upx

Malware Config

Targets

    • Target

      bef8c1e15c19563df8da3af8fdc6602fabbc4f9390d4a91c367bac7556c3a830

    • Size

      819KB

    • MD5

      0843e1bebcb87dc740e2a1c0fec6080a

    • SHA1

      84a4f788a8e79a5bf24a1d96648abc3c76c0f3fa

    • SHA256

      bef8c1e15c19563df8da3af8fdc6602fabbc4f9390d4a91c367bac7556c3a830

    • SHA512

      b5a9e5eafbfce5998e7e33aef46664cf3168d3a207c5cfe72c6bbf377f10afad610a19b0c060f08d6261be03fa695b39d8347fee9899fcce84674fd691c31982

    • SSDEEP

      6144:iv27jyGy1/pEli1TQXG3QsE0VdQTQRwvwjvaIy7snJ96e8NBRs:6/Fpl1UXGRVpw4jyIygnJ90TS

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks