Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

ca52d71157...6a.exe

windows7-x64

8

ca52d71157...6a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca52d71157eb727bd83428292aae4be86ea5f0d30ef4965baae220437659666a

  • Size

    191KB

  • Sample

    221201-waf9gsfh9x

  • MD5

    cedeee26c160d6690c934cff2323f04f

  • SHA1

    b504130e30e10e9473cc6d46294a4626e641b05d

  • SHA256

    ca52d71157eb727bd83428292aae4be86ea5f0d30ef4965baae220437659666a

  • SHA512

    8d1a4fa8316c94e243443d1db7689e12fc17c219c99252e5062872fb72d99f3f59102aa60b838dd5861bebc9aff069e37b040595ef2d3c616af01e50508cdaa5

  • SSDEEP

    3072:BNX7OAVn2wczSwmg08SwsCWnKQ2E2On8wXdVxjH:BNqA8pzRmg08SwsCdQkbwX

Score
8/10

Malware Config

Targets

    • Target

      ca52d71157eb727bd83428292aae4be86ea5f0d30ef4965baae220437659666a

    • Size

      191KB

    • MD5

      cedeee26c160d6690c934cff2323f04f

    • SHA1

      b504130e30e10e9473cc6d46294a4626e641b05d

    • SHA256

      ca52d71157eb727bd83428292aae4be86ea5f0d30ef4965baae220437659666a

    • SHA512

      8d1a4fa8316c94e243443d1db7689e12fc17c219c99252e5062872fb72d99f3f59102aa60b838dd5861bebc9aff069e37b040595ef2d3c616af01e50508cdaa5

    • SSDEEP

      3072:BNX7OAVn2wczSwmg08SwsCWnKQ2E2On8wXdVxjH:BNqA8pzRmg08SwsCdQkbwX

    Score
    8/10

    • Executes dropped EXE

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks