Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b9865fd1e38c38fa5ac9dba2cb13f6d03a013c869fb179bc37a8eccb6c203e9d

  • Size

    534KB

  • Sample

    221127-yfv1yade63

  • MD5

    a610686b288ade6ef0712d3bf3af974f

  • SHA1

    202a15c972d1388380b00badf7789bfea87d00aa

  • SHA256

    b9865fd1e38c38fa5ac9dba2cb13f6d03a013c869fb179bc37a8eccb6c203e9d

  • SHA512

    503fa8f7b6ee232d44211309e53ff5df9322ad0579aeef0481460de777c724134fbb1e6b54c0f86547ad5d9a136d84b4f1b8c885feeed4c279136b1cc978e159

  • SSDEEP

    12288:gO0B/YeZJys73dOvXDpNjNe8NeZJys73dOvXDpNjNe8fcOB0H:6BgeZJ8NI8NeZJ8NI8fcOM

Score
10/10

Malware Config

Targets

    • Target

      b9865fd1e38c38fa5ac9dba2cb13f6d03a013c869fb179bc37a8eccb6c203e9d

    • Size

      534KB

    • MD5

      a610686b288ade6ef0712d3bf3af974f

    • SHA1

      202a15c972d1388380b00badf7789bfea87d00aa

    • SHA256

      b9865fd1e38c38fa5ac9dba2cb13f6d03a013c869fb179bc37a8eccb6c203e9d

    • SHA512

      503fa8f7b6ee232d44211309e53ff5df9322ad0579aeef0481460de777c724134fbb1e6b54c0f86547ad5d9a136d84b4f1b8c885feeed4c279136b1cc978e159

    • SSDEEP

      12288:gO0B/YeZJys73dOvXDpNjNe8NeZJys73dOvXDpNjNe8fcOB0H:6BgeZJ8NI8NeZJ8NI8fcOM

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Executes dropped EXE

    • Sets file execution options in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks