Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c
-
Size
92KB
-
Sample
221121-3dtgjsbd39
-
MD5
f2e8f8fe0b4d4d734d5304fd6ef16d47
-
SHA1
c999b38f3c226716e161f8a6b2346d386a6c218b
-
SHA256
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c
-
SHA512
a31f7b4c318bd76a40be273463571c8eeadbd0293393226a8a16cc84ca5ec78e906d5bcc645e62788f8f3c1e1ee7de592ab23f8a0c2f945274839e493e3ed0e6
-
SSDEEP
1536:cgRswP+BgWekSIyUpbjFyjxEyxFJ7wRqqt:SwGKWeXIxFIEyt7Ydt
Static task
static1
Behavioral task
behavioral1
Sample
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c
-
Size
92KB
-
MD5
f2e8f8fe0b4d4d734d5304fd6ef16d47
-
SHA1
c999b38f3c226716e161f8a6b2346d386a6c218b
-
SHA256
38abb6d28cc0ead48ecfd47f0598a3957ec4f4d068b268eaedb8accb97410e4c
-
SHA512
a31f7b4c318bd76a40be273463571c8eeadbd0293393226a8a16cc84ca5ec78e906d5bcc645e62788f8f3c1e1ee7de592ab23f8a0c2f945274839e493e3ed0e6
-
SSDEEP
1536:cgRswP+BgWekSIyUpbjFyjxEyxFJ7wRqqt:SwGKWeXIxFIEyt7Ydt
Score10/10-
Modifies firewall policy service
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets file execution options in registry
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-