Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

68f43fa8d9...e6.exe

windows7-x64

8

68f43fa8d9...e6.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68f43fa8d9ca2b4b698a16d29aa53838c386faf43ccef876cfc52dedc45dc4e6

  • Size

    120KB

  • Sample

    221107-bqf87sdefm

  • MD5

    04814589a2181d2a4ffcaa2559f95682

  • SHA1

    ab90f0ec1c1369721cb0e26613ad71a34d508196

  • SHA256

    68f43fa8d9ca2b4b698a16d29aa53838c386faf43ccef876cfc52dedc45dc4e6

  • SHA512

    a2ff174b5e958ae4d1b61ebd7a58acc333a55cd9b69e2581c2e31c0122345523af64ca1ea7c919ff523a2c0f98ea69003d59485ca6ea44bfa553da0b9767b3d8

  • SSDEEP

    1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      68f43fa8d9ca2b4b698a16d29aa53838c386faf43ccef876cfc52dedc45dc4e6

    • Size

      120KB

    • MD5

      04814589a2181d2a4ffcaa2559f95682

    • SHA1

      ab90f0ec1c1369721cb0e26613ad71a34d508196

    • SHA256

      68f43fa8d9ca2b4b698a16d29aa53838c386faf43ccef876cfc52dedc45dc4e6

    • SHA512

      a2ff174b5e958ae4d1b61ebd7a58acc333a55cd9b69e2581c2e31c0122345523af64ca1ea7c919ff523a2c0f98ea69003d59485ca6ea44bfa553da0b9767b3d8

    • SSDEEP

      1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks