Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    687d864dcce69998000c85f39d4eb2b2798d3151784c7fa4cd829887646fef78

  • Size

    111KB

  • Sample

    221201-25wkjsah56

  • MD5

    94054552efa6ed9baf4ca307cd36a339

  • SHA1

    4226f1e2d303585d270fecb7dccea33ef7f18f33

  • SHA256

    687d864dcce69998000c85f39d4eb2b2798d3151784c7fa4cd829887646fef78

  • SHA512

    52aad395153638a0f8d06e5003de16236b21c124a1ca558ae00f39e233bbea9ffad1c134d26e723e09fcd1b3373425392eeb28cfd1f5992092f039bc75c33292

  • SSDEEP

    1536:cRhl5LYqPKFT44DacOQ0GpKmj6so2QdQAaenEpZkmA7NCGJo:cRhzLY32cXKmj6so2QdsMB

Score
10/10

Malware Config

Targets

    • Target

      687d864dcce69998000c85f39d4eb2b2798d3151784c7fa4cd829887646fef78

    • Size

      111KB

    • MD5

      94054552efa6ed9baf4ca307cd36a339

    • SHA1

      4226f1e2d303585d270fecb7dccea33ef7f18f33

    • SHA256

      687d864dcce69998000c85f39d4eb2b2798d3151784c7fa4cd829887646fef78

    • SHA512

      52aad395153638a0f8d06e5003de16236b21c124a1ca558ae00f39e233bbea9ffad1c134d26e723e09fcd1b3373425392eeb28cfd1f5992092f039bc75c33292

    • SSDEEP

      1536:cRhl5LYqPKFT44DacOQ0GpKmj6so2QdQAaenEpZkmA7NCGJo:cRhzLY32cXKmj6so2QdsMB

    Score
    10/10
    • Modifies WinLogon for persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks