Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

39451ea2b2...e3.exe

windows7-x64

10

39451ea2b2...e3.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    39451ea2b2c6fcd09c1661688125bdd4fe59dbc0844167ac1cc4116a683ccbe3

  • Size

    61KB

  • Sample

    221126-aek8cabf8s

  • MD5

    0c4062ff7f5a7bc41246cc1ade4ce84a

  • SHA1

    09ac772b7a5c33c72289ee792fcb9b3494bf0258

  • SHA256

    39451ea2b2c6fcd09c1661688125bdd4fe59dbc0844167ac1cc4116a683ccbe3

  • SHA512

    2a3b9c6ac502505e7192972b9632f4f443a72169bc969753c336d70c257b3a1376067ba29ced97be038cbbfe84c273a9379342c5d989ad8ec94fdf8f8c47603d

  • SSDEEP

    1536:h4UHxpN/MUXsLTvCj0DBXJaOADnsqgW5qbPnFkbbbWyLZe:h4URpNUUX6z/DBXJfADsqgW5qbWbCuZe

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      39451ea2b2c6fcd09c1661688125bdd4fe59dbc0844167ac1cc4116a683ccbe3

    • Size

      61KB

    • MD5

      0c4062ff7f5a7bc41246cc1ade4ce84a

    • SHA1

      09ac772b7a5c33c72289ee792fcb9b3494bf0258

    • SHA256

      39451ea2b2c6fcd09c1661688125bdd4fe59dbc0844167ac1cc4116a683ccbe3

    • SHA512

      2a3b9c6ac502505e7192972b9632f4f443a72169bc969753c336d70c257b3a1376067ba29ced97be038cbbfe84c273a9379342c5d989ad8ec94fdf8f8c47603d

    • SSDEEP

      1536:h4UHxpN/MUXsLTvCj0DBXJaOADnsqgW5qbPnFkbbbWyLZe:h4URpNUUX6z/DBXJfADsqgW5qbWbCuZe

    Score
    10/10
    evasionpersistencetrojan

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • UAC bypass

      evasiontrojan

    • Adds policy Run key to start application

      persistence

    • Blocklisted process makes network request

    • Disables taskbar notifications via registry modification

      evasion

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks