Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    af8a9fd868406290454d7bf20f9a5ad19d66fda7b1b447bbc93a6e8b63f9856a

  • Size

    718KB

  • Sample

    221203-apgmxacd3t

  • MD5

    2328b9e053c1fb45697af431d9090df0

  • SHA1

    c8d590dc619828e4c1165b4c06ba05dc2a5a3e93

  • SHA256

    af8a9fd868406290454d7bf20f9a5ad19d66fda7b1b447bbc93a6e8b63f9856a

  • SHA512

    4b6fa725acedfb3866b2815ebd10fb3a99903e0a5bc8ad688d3d491d1b174791df16fe4be49ed491d5b88ceff6ebde5c8f1b69fd9e793236a8a3b5141eba3c39

  • SSDEEP

    12288:wX/eOyaiqgQIDdFCPtggTSWAJR0p/StdpxHHF/XWs3KI8:wX/eO4qrIDdEDTjAJR0JStdpxHHF/r8

Score
10/10

Malware Config

Targets

    • Target

      af8a9fd868406290454d7bf20f9a5ad19d66fda7b1b447bbc93a6e8b63f9856a

    • Size

      718KB

    • MD5

      2328b9e053c1fb45697af431d9090df0

    • SHA1

      c8d590dc619828e4c1165b4c06ba05dc2a5a3e93

    • SHA256

      af8a9fd868406290454d7bf20f9a5ad19d66fda7b1b447bbc93a6e8b63f9856a

    • SHA512

      4b6fa725acedfb3866b2815ebd10fb3a99903e0a5bc8ad688d3d491d1b174791df16fe4be49ed491d5b88ceff6ebde5c8f1b69fd9e793236a8a3b5141eba3c39

    • SSDEEP

      12288:wX/eOyaiqgQIDdFCPtggTSWAJR0p/StdpxHHF/XWs3KI8:wX/eO4qrIDdEDTjAJR0JStdpxHHF/r8

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks