Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47
-
Size
83KB
-
Sample
221201-fevpnsad9x
-
MD5
ef74b3a1fcbce6dd3d2d51e20a2a04f7
-
SHA1
c8b0b66233997ff542e70401e99bebc3e714bec8
-
SHA256
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47
-
SHA512
b86974b584214ba206b52c5e464808f3673c816f854d72e131559636a935e052b7bd467f89cc70f7e5bce3506592b88cfcd37e98783d322758c39779b8b1eb9e
-
SSDEEP
1536:JCRHfzxrdFSzcNEnnsNXJEh4aGWDZlKujyK0+pHvIr8MS1XuKERU7nBBek:u1LflWDZltyK0+gr8MyXuKE
Static task
static1
Behavioral task
behavioral1
Sample
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47
-
Size
83KB
-
MD5
ef74b3a1fcbce6dd3d2d51e20a2a04f7
-
SHA1
c8b0b66233997ff542e70401e99bebc3e714bec8
-
SHA256
5b87bbab1220df81134e490800b0f044cc37e5727c3de33b5f035ce61abb0c47
-
SHA512
b86974b584214ba206b52c5e464808f3673c816f854d72e131559636a935e052b7bd467f89cc70f7e5bce3506592b88cfcd37e98783d322758c39779b8b1eb9e
-
SSDEEP
1536:JCRHfzxrdFSzcNEnnsNXJEh4aGWDZlKujyK0+pHvIr8MS1XuKERU7nBBek:u1LflWDZltyK0+gr8MyXuKE
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-