Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
-
Size
181KB
-
Sample
221201-tbmfsaha61
-
MD5
4a1333a9ba74d9c0f4ad201e96ede7d7
-
SHA1
c7d19bb7325942d05857ae5fdc83a432bbc95222
-
SHA256
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
-
SHA512
171964bd40441b70801eaba65b24a92bd42048f9d9f3ef5b0bb488d259250e7f7e24807d86a333026e714171f921c89720ff60b41dd1ca0b519e159508e68f0a
-
SSDEEP
3072:ZW9/Prtfh9XRu3tCGz0v25A4qs83uJ7vculwWYbDSHlegZoC+w0uMsi0q1jS7j7X:M9/PPu3wGzo25HqZU7UIwQHln/FMsipU
Static task
static1
Behavioral task
behavioral1
Sample
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
-
Size
181KB
-
MD5
4a1333a9ba74d9c0f4ad201e96ede7d7
-
SHA1
c7d19bb7325942d05857ae5fdc83a432bbc95222
-
SHA256
fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
-
SHA512
171964bd40441b70801eaba65b24a92bd42048f9d9f3ef5b0bb488d259250e7f7e24807d86a333026e714171f921c89720ff60b41dd1ca0b519e159508e68f0a
-
SSDEEP
3072:ZW9/Prtfh9XRu3tCGz0v25A4qs83uJ7vculwWYbDSHlegZoC+w0uMsi0q1jS7j7X:M9/PPu3wGzo25HqZU7UIwQHln/FMsipU
Score10/10-
Modifies firewall policy service
-
Modifies security service
-
Deletes itself
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-