Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b88e7d89b382c3a8f442fa57503843708eaaa37071b2472939789cd8dcbcb3ed

  • Size

    1.6MB

  • Sample

    221123-1ehekafa79

  • MD5

    4188b545976d8c8e7591fa54b3f49bf7

  • SHA1

    b9774e9b5f87b28af1cba06097683dfb6bffe48f

  • SHA256

    b88e7d89b382c3a8f442fa57503843708eaaa37071b2472939789cd8dcbcb3ed

  • SHA512

    23dfa0355f7f0d102caab9ab3c4bd7bcc27a16ac769f1a7fb468a0b159c10c15aca15045d21747e7490234899c2d18ae95c19bc0a69c57ceb311e06048d1113c

  • SSDEEP

    12288:gOQOB0rerQZb+md4w1UAGpnfRnJGSUUg+6fSf7Gos20fut:+OGerQZb+md4wmAGlBJG9cgOGom8

Score
10/10

Malware Config

Targets

    • Target

      b88e7d89b382c3a8f442fa57503843708eaaa37071b2472939789cd8dcbcb3ed

    • Size

      1.6MB

    • MD5

      4188b545976d8c8e7591fa54b3f49bf7

    • SHA1

      b9774e9b5f87b28af1cba06097683dfb6bffe48f

    • SHA256

      b88e7d89b382c3a8f442fa57503843708eaaa37071b2472939789cd8dcbcb3ed

    • SHA512

      23dfa0355f7f0d102caab9ab3c4bd7bcc27a16ac769f1a7fb468a0b159c10c15aca15045d21747e7490234899c2d18ae95c19bc0a69c57ceb311e06048d1113c

    • SSDEEP

      12288:gOQOB0rerQZb+md4w1UAGpnfRnJGSUUg+6fSf7Gos20fut:+OGerQZb+md4wmAGlBJG9cgOGom8

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks