Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

79eae94705...80.exe

windows7-x64

8

79eae94705...80.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    79eae9470508cb945401b0cadf28d40dcd59245076a6ae9f2c8c6ef7e49b3d80

  • Size

    1.3MB

  • Sample

    221128-fneptacc3w

  • MD5

    fe3d769e817b657243ac5d221cc56cac

  • SHA1

    978d8aefb4774890110d81e61b2bb82e8c42f175

  • SHA256

    79eae9470508cb945401b0cadf28d40dcd59245076a6ae9f2c8c6ef7e49b3d80

  • SHA512

    f26a0a705005eac9f17c24b176e89c3667b047509051d5b2a118c91050917e122c67eb942f2dd8ef40c19683ddccffb53437d41dbc1746d2f291e1f727f302fb

  • SSDEEP

    24576:rtL9JBGGoaqcxcvk/S6ojVKKS8Raa4PiB36PES5AjDhmwjAE4m9BE4Ye4:RL9JwGoaqcuvk6xVA8RaaUiBj/LH4H4+

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      79eae9470508cb945401b0cadf28d40dcd59245076a6ae9f2c8c6ef7e49b3d80

    • Size

      1.3MB

    • MD5

      fe3d769e817b657243ac5d221cc56cac

    • SHA1

      978d8aefb4774890110d81e61b2bb82e8c42f175

    • SHA256

      79eae9470508cb945401b0cadf28d40dcd59245076a6ae9f2c8c6ef7e49b3d80

    • SHA512

      f26a0a705005eac9f17c24b176e89c3667b047509051d5b2a118c91050917e122c67eb942f2dd8ef40c19683ddccffb53437d41dbc1746d2f291e1f727f302fb

    • SSDEEP

      24576:rtL9JBGGoaqcxcvk/S6ojVKKS8Raa4PiB36PES5AjDhmwjAE4m9BE4Ye4:RL9JwGoaqcuvk6xVA8RaaUiBj/LH4H4+

    Score
    8/10
    bootkitpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks