Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f7a692a27ada63c94cd2d35ab03ef38c013f39504b6872af69bea091041157e8

  • Size

    3.8MB

  • Sample

    221125-za5hvsdc69

  • MD5

    b2cb5506284b2f3f885bc90f613d9990

  • SHA1

    8d9cf74c80918d557c773e3804e08bd935cf4b47

  • SHA256

    f7a692a27ada63c94cd2d35ab03ef38c013f39504b6872af69bea091041157e8

  • SHA512

    f1a508e30ed6bda7c3948c7d7a57bbba4cffbc43ab2d6324b01f4859ee98b875e8edf1c5192eef30c8f0e3610360434242ef281e52eada73a1974f7243cd9451

  • SSDEEP

    98304:67tWFdEdix1W5u6iLqcSMHD1W7J2JhD2nh9fQHQ6bisqy:l3wqLHrHD1W7J2JhDoh9OXbisN

Score
9/10

Malware Config

Targets

    • Target

      f7a692a27ada63c94cd2d35ab03ef38c013f39504b6872af69bea091041157e8

    • Size

      3.8MB

    • MD5

      b2cb5506284b2f3f885bc90f613d9990

    • SHA1

      8d9cf74c80918d557c773e3804e08bd935cf4b47

    • SHA256

      f7a692a27ada63c94cd2d35ab03ef38c013f39504b6872af69bea091041157e8

    • SHA512

      f1a508e30ed6bda7c3948c7d7a57bbba4cffbc43ab2d6324b01f4859ee98b875e8edf1c5192eef30c8f0e3610360434242ef281e52eada73a1974f7243cd9451

    • SSDEEP

      98304:67tWFdEdix1W5u6iLqcSMHD1W7J2JhD2nh9fQHQ6bisqy:l3wqLHrHD1W7J2JhDoh9OXbisN

    Score
    9/10
    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Executes dropped EXE

    • Loads dropped DLL

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v6

Tasks