Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    17fc8e61558f799be99521a4f2c9c810588220f41d4816ad33f15afd31539567

  • Size

    1.1MB

  • Sample

    221107-getytadcgr

  • MD5

    0f4991149c2e367ca29cc97eda9480ec

  • SHA1

    076fde76753de701efa9d1c560aa29d4ff774945

  • SHA256

    17fc8e61558f799be99521a4f2c9c810588220f41d4816ad33f15afd31539567

  • SHA512

    2693724f3ac71d44d580ef2adc0db7b8618d10d6f24968b10df2443724ac4587ed4447b146015157808baf566e1aa6173491226fce077b799097208d6bb458be

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGQi:r5sJo6YrFUiyAak11LtjGQi

Score
8/10

Malware Config

Targets

    • Target

      17fc8e61558f799be99521a4f2c9c810588220f41d4816ad33f15afd31539567

    • Size

      1.1MB

    • MD5

      0f4991149c2e367ca29cc97eda9480ec

    • SHA1

      076fde76753de701efa9d1c560aa29d4ff774945

    • SHA256

      17fc8e61558f799be99521a4f2c9c810588220f41d4816ad33f15afd31539567

    • SHA512

      2693724f3ac71d44d580ef2adc0db7b8618d10d6f24968b10df2443724ac4587ed4447b146015157808baf566e1aa6173491226fce077b799097208d6bb458be

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGQi:r5sJo6YrFUiyAak11LtjGQi

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks