Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

c322f60b17...b9.exe

windows7-x64

10

c322f60b17...b9.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c322f60b17310a22198e89a3ad13602e6503435f991b2a0ce9f4ac179013b8b9

  • Size

    73KB

  • Sample

    221201-wtdygaeg24

  • MD5

    5dc524a59a822645556850248aa32a16

  • SHA1

    cfad1ba8100d0b7f9c6dc1bfa72f6f5089afd97c

  • SHA256

    c322f60b17310a22198e89a3ad13602e6503435f991b2a0ce9f4ac179013b8b9

  • SHA512

    8a03ff752a24a5e916da328cb65f55b8aea35c587133e1393049a3facf8e7d6d77ba07bccdeff03749b94a7f4bdae7990747cbc5b8c573f3016f3586c4adb035

  • SSDEEP

    1536:NOtgk7mT8snxZCBgcpUTihp89lEarihxJmsP:8gku0pUeircxJD

Score
10/10
persistence

Malware Config

Targets

    • Target

      c322f60b17310a22198e89a3ad13602e6503435f991b2a0ce9f4ac179013b8b9

    • Size

      73KB

    • MD5

      5dc524a59a822645556850248aa32a16

    • SHA1

      cfad1ba8100d0b7f9c6dc1bfa72f6f5089afd97c

    • SHA256

      c322f60b17310a22198e89a3ad13602e6503435f991b2a0ce9f4ac179013b8b9

    • SHA512

      8a03ff752a24a5e916da328cb65f55b8aea35c587133e1393049a3facf8e7d6d77ba07bccdeff03749b94a7f4bdae7990747cbc5b8c573f3016f3586c4adb035

    • SSDEEP

      1536:NOtgk7mT8snxZCBgcpUTihp89lEarihxJmsP:8gku0pUeircxJD

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks