Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683
-
Size
64KB
-
Sample
221201-1892nsga34
-
MD5
2c270eecea7199f47b769e632608f81e
-
SHA1
50cf010c103e46c5e593b735d9e43af27fa9a572
-
SHA256
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683
-
SHA512
e2bf41681e68e18786f9f7350efc9035d9ec1eab7cdcbe595b1ec6852cf61939aeae5fed7418ee82f6ec8af03e1ff808f9def798ff402049141ffe0c0aacdd0b
-
SSDEEP
1536:OK3qHMboLaNmALk7ZZ4wHR8i3et0B0JE7X:t9bbsAQ7ZGwHRsVE7
Static task
static1
Behavioral task
behavioral1
Sample
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683
-
Size
64KB
-
MD5
2c270eecea7199f47b769e632608f81e
-
SHA1
50cf010c103e46c5e593b735d9e43af27fa9a572
-
SHA256
80ef1a7c6524f75236c00bc45b29e6ebb184e63599206a9b6af73f633dcf1683
-
SHA512
e2bf41681e68e18786f9f7350efc9035d9ec1eab7cdcbe595b1ec6852cf61939aeae5fed7418ee82f6ec8af03e1ff808f9def798ff402049141ffe0c0aacdd0b
-
SSDEEP
1536:OK3qHMboLaNmALk7ZZ4wHR8i3et0B0JE7X:t9bbsAQ7ZGwHRsVE7
Score10/10-
Modifies WinLogon for persistence
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-