Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    93527b52a1094ae6658f64cff70c70e3cdb9d0b80912d55b0d93da912dc4e642

  • Size

    339KB

  • Sample

    221201-bhme9aef51

  • MD5

    ddbea14aa39e9d30074e7ebfc6a95f55

  • SHA1

    1f2a71d36d059040153d281969b07f9364d5c2b4

  • SHA256

    93527b52a1094ae6658f64cff70c70e3cdb9d0b80912d55b0d93da912dc4e642

  • SHA512

    a49d755c24d704bf0aef0bb85160a6b8c5cfaf0045afc31560ec5fa82ae502df2a8f3410b1ac33b274343e5d7fb0f3b41dd9ffde23de30024863a687cf0910cf

  • SSDEEP

    6144:6RgJZRbMK79GfHiEQF9BcvT/9BwviZ27vyQOxcUkripfpf2n1MArJ:iSMmGfLQF9Sr/9iiZBQOqXepfpf2n1M4

Malware Config

Targets

    • Target

      93527b52a1094ae6658f64cff70c70e3cdb9d0b80912d55b0d93da912dc4e642

    • Size

      339KB

    • MD5

      ddbea14aa39e9d30074e7ebfc6a95f55

    • SHA1

      1f2a71d36d059040153d281969b07f9364d5c2b4

    • SHA256

      93527b52a1094ae6658f64cff70c70e3cdb9d0b80912d55b0d93da912dc4e642

    • SHA512

      a49d755c24d704bf0aef0bb85160a6b8c5cfaf0045afc31560ec5fa82ae502df2a8f3410b1ac33b274343e5d7fb0f3b41dd9ffde23de30024863a687cf0910cf

    • SSDEEP

      6144:6RgJZRbMK79GfHiEQF9BcvT/9BwviZ27vyQOxcUkripfpf2n1MArJ:iSMmGfLQF9Sr/9iiZBQOqXepfpf2n1M4

    • Disables Task Manager via registry modification

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v6

Tasks