Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5d585dafd65937871241b9313eff7a3b5a1b23531afaddc726179373cdcae1c3

  • Size

    529KB

  • Sample

    221127-nvemdshe8x

  • MD5

    6ac2083cde635e26f1adaa42a4b3a280

  • SHA1

    d4210f434a4aba0c14c19f45fd8d918c9071787f

  • SHA256

    5d585dafd65937871241b9313eff7a3b5a1b23531afaddc726179373cdcae1c3

  • SHA512

    c984aa99bba4ae325285a2de1fcb0f23f4ed50ec0a441b992a381f8f9b573774e2f1ff0b0f9e0c65eca392712db3f59aea43169813f846595a01c1d0b99b79cb

  • SSDEEP

    6144:5uHOjE2El/UOPSe570Szp3/uHOcE2El/UOPSe570Szp3jqY:gO+uOB0fOzuOB0uqY

Score
10/10

Malware Config

Targets

    • Target

      5d585dafd65937871241b9313eff7a3b5a1b23531afaddc726179373cdcae1c3

    • Size

      529KB

    • MD5

      6ac2083cde635e26f1adaa42a4b3a280

    • SHA1

      d4210f434a4aba0c14c19f45fd8d918c9071787f

    • SHA256

      5d585dafd65937871241b9313eff7a3b5a1b23531afaddc726179373cdcae1c3

    • SHA512

      c984aa99bba4ae325285a2de1fcb0f23f4ed50ec0a441b992a381f8f9b573774e2f1ff0b0f9e0c65eca392712db3f59aea43169813f846595a01c1d0b99b79cb

    • SSDEEP

      6144:5uHOjE2El/UOPSe570Szp3/uHOcE2El/UOPSe570Szp3jqY:gO+uOB0fOzuOB0uqY

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks