Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

telekom_de...38.exe

windows7-x64

7

telekom_de...38.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bc07d3bc4d08f9285dc01583e9608bc1460560d4918a938d58f9c5033034c93

  • Size

    124KB

  • Sample

    221127-w87jbsdf9t

  • MD5

    db424f64423d0a51391be18433b48367

  • SHA1

    418656516ba02f72c7d83e135ddb812ecb5b91d6

  • SHA256

    8bc07d3bc4d08f9285dc01583e9608bc1460560d4918a938d58f9c5033034c93

  • SHA512

    da8c8ab4daa17c3e4536ace9066e7f0a3fc1ef37eb0ff53d28a7633051a6b43fe8ca9c3563d66b109b3c6f891b8a618d4479686e93d8dc047438a0406d37235e

  • SSDEEP

    1536:VqHEjgbkvkfCGzRe6UsfT680I8gXG5VnCojmm6wt8BdMeNXAtwxTsVsGIL2+ya3J:Vp0ddQaGLnCo0dXrxTsuGb+j3FO5MT

Score
7/10
persistence

Malware Config

Targets

    • Target

      telekom_deutschland_dezember_2014_de_0001_3029400_92_928_02020_0_7_293489_0038.exe

    • Size

      156KB

    • MD5

      2dec40d7b7933f41203fc40ff5f9f6a2

    • SHA1

      e9bf4aa0dfd58f51fb49553e6c0ac7e305039c7e

    • SHA256

      27c298c77e16bbc3f056653034c2d918418f877bb0193a9ca533b5527d830a94

    • SHA512

      6c04dd52b99ff919797ff1851aaa45f3953643157f4d522b4b11336ec7d49a105e2274175a6932f4acefd1dcba4b8f4864d9eec71da8ab317ad937d2d2354322

    • SSDEEP

      3072:m2V3A7emadat92PH48GLnCo0dXjxTsuGb+j3FRvtVFVlD2Pq:xV3A6mkat98LdzxwuGWJ7V1D

    Score
    7/10
    persistence

    • Deletes itself

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks