Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

abd69ae5f7...91.exe

windows7-x64

8

abd69ae5f7...91.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abd69ae5f71eba73671de039ae75fcac48b9bb824dea3dbd5c73c41b6845f491

  • Size

    45KB

  • Sample

    221125-zzg4vsfb82

  • MD5

    c35ad8660d5a4ceb34404ebb54b7c644

  • SHA1

    edb49a86ceeb479316bbffc592d01347c38ba3b0

  • SHA256

    abd69ae5f71eba73671de039ae75fcac48b9bb824dea3dbd5c73c41b6845f491

  • SHA512

    ce398b3f8bfb81ff23cd79ca5d71f87542c79fb43a43d41bae4a1e8dbeb861501b87cf1e19608e7561bd33a4a1b8e04d128ef86bf28307664be494b1ce75afcc

  • SSDEEP

    768:lieWu/ija+1IKs2xX52FrC6VqPLAtrN3te1XMIHAh5Fkje8rkOuSqfIAfOokBJmM:lie70X520jKcMIghUqUuSPcpef

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      abd69ae5f71eba73671de039ae75fcac48b9bb824dea3dbd5c73c41b6845f491

    • Size

      45KB

    • MD5

      c35ad8660d5a4ceb34404ebb54b7c644

    • SHA1

      edb49a86ceeb479316bbffc592d01347c38ba3b0

    • SHA256

      abd69ae5f71eba73671de039ae75fcac48b9bb824dea3dbd5c73c41b6845f491

    • SHA512

      ce398b3f8bfb81ff23cd79ca5d71f87542c79fb43a43d41bae4a1e8dbeb861501b87cf1e19608e7561bd33a4a1b8e04d128ef86bf28307664be494b1ce75afcc

    • SSDEEP

      768:lieWu/ija+1IKs2xX52FrC6VqPLAtrN3te1XMIHAh5Fkje8rkOuSqfIAfOokBJmM:lie70X520jKcMIghUqUuSPcpef

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks