Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

b51b254b54...4c.exe

windows7-x64

10

b51b254b54...4c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b51b254b54c4ef3c501cb7516aa6971532b7bf8b86b331cefa77703a181f834c

  • Size

    151KB

  • Sample

    221107-t6byjagcb7

  • MD5

    0e4fc68ce6e942038f3dc9d3376f3179

  • SHA1

    4fda41f3189451e6e733584f5988abd60cf501ce

  • SHA256

    b51b254b54c4ef3c501cb7516aa6971532b7bf8b86b331cefa77703a181f834c

  • SHA512

    7b7283b683dc90b6dd0905c5a621947452c2edb1d73e48507961f3dba7fa23777d376aa46d87955d572fbc7639dedc224e286992f58f5b60fdc2481064c751f9

  • SSDEEP

    3072:DLm+P8VzL/p/LwXRtWyOXLvxgWQS84IBNGqSd/:3B89h0RtWyGjxgWvsNGR/

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      b51b254b54c4ef3c501cb7516aa6971532b7bf8b86b331cefa77703a181f834c

    • Size

      151KB

    • MD5

      0e4fc68ce6e942038f3dc9d3376f3179

    • SHA1

      4fda41f3189451e6e733584f5988abd60cf501ce

    • SHA256

      b51b254b54c4ef3c501cb7516aa6971532b7bf8b86b331cefa77703a181f834c

    • SHA512

      7b7283b683dc90b6dd0905c5a621947452c2edb1d73e48507961f3dba7fa23777d376aa46d87955d572fbc7639dedc224e286992f58f5b60fdc2481064c751f9

    • SSDEEP

      3072:DLm+P8VzL/p/LwXRtWyOXLvxgWQS84IBNGqSd/:3B89h0RtWyGjxgWvsNGR/

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks