Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b2d491e804069d84824be749037cfdcd8f5306d8f847efb04ac8d1c407d573fa

  • Size

    880KB

  • Sample

    221202-12hc3scg8t

  • MD5

    0d0a886f079ac5842429d6ba99e8d679

  • SHA1

    d939420492c9534c39c08cfac9f17d4569cf2f06

  • SHA256

    b2d491e804069d84824be749037cfdcd8f5306d8f847efb04ac8d1c407d573fa

  • SHA512

    aa24b173682a47c4657ba89a372014250ecb864569f3c2f9a3657076b7a6d47e2c818090ac1f740d0bc5c4a8f9cc73d8a8de9dc1ef01516f77bb4c98530e39f6

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27Qitjt:r5sJo6YrFUiyAak11Ltjt

Score
8/10

Malware Config

Targets

    • Target

      b2d491e804069d84824be749037cfdcd8f5306d8f847efb04ac8d1c407d573fa

    • Size

      880KB

    • MD5

      0d0a886f079ac5842429d6ba99e8d679

    • SHA1

      d939420492c9534c39c08cfac9f17d4569cf2f06

    • SHA256

      b2d491e804069d84824be749037cfdcd8f5306d8f847efb04ac8d1c407d573fa

    • SHA512

      aa24b173682a47c4657ba89a372014250ecb864569f3c2f9a3657076b7a6d47e2c818090ac1f740d0bc5c4a8f9cc73d8a8de9dc1ef01516f77bb4c98530e39f6

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27Qitjt:r5sJo6YrFUiyAak11Ltjt

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks