Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683

  • Size

    64KB

  • Sample

    221201-1892nsga34

  • MD5

    2c270eecea7199f47b769e632608f81e

  • SHA1

    50cf010c103e46c5e593b735d9e43af27fa9a572

  • SHA256

    80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683

  • SHA512

    e2bf41681e68e18786f9f7350efc9035d9ec1eab7cdcbe595b1ec6852cf61939aeae5fed7418ee82f6ec8af03e1ff808f9def798ff402049141ffe0c0aacdd0b

  • SSDEEP

    1536:OK3qHMboLaNmALk7ZZ4wHR8i3et0B0JE7X:t9bbsAQ7ZGwHRsVE7

Score
10/10

Malware Config

Targets

    • Target

      80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683

    • Size

      64KB

    • MD5

      2c270eecea7199f47b769e632608f81e

    • SHA1

      50cf010c103e46c5e593b735d9e43af27fa9a572

    • SHA256

      80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683

    • SHA512

      e2bf41681e68e18786f9f7350efc9035d9ec1eab7cdcbe595b1ec6852cf61939aeae5fed7418ee82f6ec8af03e1ff808f9def798ff402049141ffe0c0aacdd0b

    • SSDEEP

      1536:OK3qHMboLaNmALk7ZZ4wHR8i3et0B0JE7X:t9bbsAQ7ZGwHRsVE7

    Score
    10/10
    • Modifies WinLogon for persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks