Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1a7c49517022241cb9dbb839559517e8d8efa5343ab144bcbd1060151eab82ff

  • Size

    565KB

  • Sample

    221121-nkt94acb4v

  • MD5

    461351e7285da48f692165915065b20b

  • SHA1

    12e5a4c152ca5ba0c2f5caf47a2ec34e156c62b8

  • SHA256

    1a7c49517022241cb9dbb839559517e8d8efa5343ab144bcbd1060151eab82ff

  • SHA512

    d11ab31a85e1b86ed5682d5a38f1c5c9ea9896882aa475f31808d3ad246c631ca1fed0730e018bd82de9db8a7d5cd7d73beadee940c52c9fbcf6d299597cd4bb

  • SSDEEP

    6144:5uHOJnmy+g43GFrQZb++tdsHP4+QfI6U8rG1VVE+IA:gOJIerQZb+md4w1Uout

Score
10/10

Malware Config

Targets

    • Target

      1a7c49517022241cb9dbb839559517e8d8efa5343ab144bcbd1060151eab82ff

    • Size

      565KB

    • MD5

      461351e7285da48f692165915065b20b

    • SHA1

      12e5a4c152ca5ba0c2f5caf47a2ec34e156c62b8

    • SHA256

      1a7c49517022241cb9dbb839559517e8d8efa5343ab144bcbd1060151eab82ff

    • SHA512

      d11ab31a85e1b86ed5682d5a38f1c5c9ea9896882aa475f31808d3ad246c631ca1fed0730e018bd82de9db8a7d5cd7d73beadee940c52c9fbcf6d299597cd4bb

    • SSDEEP

      6144:5uHOJnmy+g43GFrQZb++tdsHP4+QfI6U8rG1VVE+IA:gOJIerQZb+md4w1Uout

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks