Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    da90f20d1f416d64ed282c4b0a60990c5ae18359b614281243b6f7a8548e12de

  • Size

    123KB

  • Sample

    221201-vemfmahc92

  • MD5

    2529894501e8ccef50c535e7fefc7632

  • SHA1

    bd944ca386f094996a244efd77b347735b4fbce8

  • SHA256

    da90f20d1f416d64ed282c4b0a60990c5ae18359b614281243b6f7a8548e12de

  • SHA512

    11dd559761df2c1f393173ae0d27280f9aafe4eb2ea7fc44a6db96cb19faaeb7c0ceefc05aff1bef72090160c28018f29895bc50ab7206f1e922ddcad0d79ebb

  • SSDEEP

    3072:901mCUf/3MxU7ZIVRS99Qrm3Rqb6VVjH20CQg+D:2mrcGeS8b6jjH20CQ9D

Score
8/10

Malware Config

Targets

    • Target

      da90f20d1f416d64ed282c4b0a60990c5ae18359b614281243b6f7a8548e12de

    • Size

      123KB

    • MD5

      2529894501e8ccef50c535e7fefc7632

    • SHA1

      bd944ca386f094996a244efd77b347735b4fbce8

    • SHA256

      da90f20d1f416d64ed282c4b0a60990c5ae18359b614281243b6f7a8548e12de

    • SHA512

      11dd559761df2c1f393173ae0d27280f9aafe4eb2ea7fc44a6db96cb19faaeb7c0ceefc05aff1bef72090160c28018f29895bc50ab7206f1e922ddcad0d79ebb

    • SSDEEP

      3072:901mCUf/3MxU7ZIVRS99Qrm3Rqb6VVjH20CQg+D:2mrcGeS8b6jjH20CQ9D

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Deletes itself

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks