Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a79336aabdea43e46bd377a81271f96c19885afcc28d009bce795bb4b39d311d

  • Size

    1.1MB

  • Sample

    221107-vp83dahcd3

  • MD5

    015109d538e88848b884f99c5f2529d5

  • SHA1

    58b922952e40ae55acf5e8cf10e961c20965a12e

  • SHA256

    a79336aabdea43e46bd377a81271f96c19885afcc28d009bce795bb4b39d311d

  • SHA512

    6e76608fdd93e6ab0839fe2c801880aff44ef7270ce735bee4e586efbe05adff8bbd2d7f4826b896dca445fa3803c48b292e28758e4fe7739eecc6673d94864c

  • SSDEEP

    12288:gOzVmOBB/VmOBB/VmOBB/VVBZoJqQZy5SfOROv:BBLBLBHoJqsaS2ROv

Score
10/10

Malware Config

Targets

    • Target

      a79336aabdea43e46bd377a81271f96c19885afcc28d009bce795bb4b39d311d

    • Size

      1.1MB

    • MD5

      015109d538e88848b884f99c5f2529d5

    • SHA1

      58b922952e40ae55acf5e8cf10e961c20965a12e

    • SHA256

      a79336aabdea43e46bd377a81271f96c19885afcc28d009bce795bb4b39d311d

    • SHA512

      6e76608fdd93e6ab0839fe2c801880aff44ef7270ce735bee4e586efbe05adff8bbd2d7f4826b896dca445fa3803c48b292e28758e4fe7739eecc6673d94864c

    • SSDEEP

      12288:gOzVmOBB/VmOBB/VmOBB/VVBZoJqQZy5SfOROv:BBLBLBHoJqsaS2ROv

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks