Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7932853637...8a.exe

windows7-x64

8

7932853637...8a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    79328536376786c7fdd306a97c79520166ebb0a38f7554fdc65434fee7b8818a

  • Size

    203KB

  • Sample

    221201-c989rsgf27

  • MD5

    a18fe5e9acaa35bd57d7444bec6e7f8f

  • SHA1

    b2a0d7ce4798b920f949e45207cd67c5b7497543

  • SHA256

    79328536376786c7fdd306a97c79520166ebb0a38f7554fdc65434fee7b8818a

  • SHA512

    83173d0900bd7d0f6c20965f257f7da3494aee80e4d6c515116dd94553880ea94d011ba0e181170e5e1696eb9fadfcd6ba8cd401ab28281611c4f57023871447

  • SSDEEP

    6144:PK2b38eV5Ko49ss9tp059yyVB118PgK04IEU:C2T8e2ss9Y59yyVBf8IK

Score
8/10
persistence

Malware Config

Targets

    • Target

      79328536376786c7fdd306a97c79520166ebb0a38f7554fdc65434fee7b8818a

    • Size

      203KB

    • MD5

      a18fe5e9acaa35bd57d7444bec6e7f8f

    • SHA1

      b2a0d7ce4798b920f949e45207cd67c5b7497543

    • SHA256

      79328536376786c7fdd306a97c79520166ebb0a38f7554fdc65434fee7b8818a

    • SHA512

      83173d0900bd7d0f6c20965f257f7da3494aee80e4d6c515116dd94553880ea94d011ba0e181170e5e1696eb9fadfcd6ba8cd401ab28281611c4f57023871447

    • SSDEEP

      6144:PK2b38eV5Ko49ss9tp059yyVB118PgK04IEU:C2T8e2ss9Y59yyVBf8IK

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Registers COM server for autorun

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks