Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab1363fec16b35b43359d203aacb4fe90e1110415efadf62484c01df235b28b5

  • Size

    7.6MB

  • Sample

    221128-c79grahe95

  • MD5

    7a3b036178be3af2d199e119abf83f8f

  • SHA1

    28ee4138634cf74b088ffe28ac802aaa2a89d0ff

  • SHA256

    ab1363fec16b35b43359d203aacb4fe90e1110415efadf62484c01df235b28b5

  • SHA512

    baa0521a42e4920708689c46c6f909581fa298b9bacf856d5c02e8053abd33ba14e3df630a42bd4aff1d29058ade8a48cf7bcb1834448fb8dcb1cbd8119a83bb

  • SSDEEP

    196608:wcDE5xxyWRPQrnjGdTAdSwgbzERTY6+Z2vlyZHs7:wBpUGsbR0MsZHs7

Score
9/10

Malware Config

Targets

    • Target

      ab1363fec16b35b43359d203aacb4fe90e1110415efadf62484c01df235b28b5

    • Size

      7.6MB

    • MD5

      7a3b036178be3af2d199e119abf83f8f

    • SHA1

      28ee4138634cf74b088ffe28ac802aaa2a89d0ff

    • SHA256

      ab1363fec16b35b43359d203aacb4fe90e1110415efadf62484c01df235b28b5

    • SHA512

      baa0521a42e4920708689c46c6f909581fa298b9bacf856d5c02e8053abd33ba14e3df630a42bd4aff1d29058ade8a48cf7bcb1834448fb8dcb1cbd8119a83bb

    • SSDEEP

      196608:wcDE5xxyWRPQrnjGdTAdSwgbzERTY6+Z2vlyZHs7:wBpUGsbR0MsZHs7

    Score
    9/10
    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v6

Tasks