Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

f32abfb85f...55.exe

windows7-x64

10

f32abfb85f...55.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f32abfb85ffc5c0d3669d724b945c63550b9496373712e2f2fbaef206a9ceb55

  • Size

    220KB

  • Sample

    221203-dc2zvsha87

  • MD5

    14ef4243306a2758259611d3ea049d60

  • SHA1

    199d56dd58ed9dd06ac5abb11bbfd96af6f22b7b

  • SHA256

    f32abfb85ffc5c0d3669d724b945c63550b9496373712e2f2fbaef206a9ceb55

  • SHA512

    6b6cfcd705253e2dfb233bba71282dd7003bb6ff216019f68412eead1efed54aaf412cc95c435a4a33f6b61c65435ba66d40ed782480524f175c9b9fdc54b31a

  • SSDEEP

    3072:wlhkX5ZSZ6D02VmMBbz1xc6UzJskvt4eL+15NiWIwEPNX3XA:wvkXSZohNfezdn+15wPx3Q

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      f32abfb85ffc5c0d3669d724b945c63550b9496373712e2f2fbaef206a9ceb55

    • Size

      220KB

    • MD5

      14ef4243306a2758259611d3ea049d60

    • SHA1

      199d56dd58ed9dd06ac5abb11bbfd96af6f22b7b

    • SHA256

      f32abfb85ffc5c0d3669d724b945c63550b9496373712e2f2fbaef206a9ceb55

    • SHA512

      6b6cfcd705253e2dfb233bba71282dd7003bb6ff216019f68412eead1efed54aaf412cc95c435a4a33f6b61c65435ba66d40ed782480524f175c9b9fdc54b31a

    • SSDEEP

      3072:wlhkX5ZSZ6D02VmMBbz1xc6UzJskvt4eL+15NiWIwEPNX3XA:wvkXSZohNfezdn+15wPx3Q

    Score
    10/10
    evasionpersistence

    • Modifies firewall policy service

      evasion

    • Modifies security service

      evasion

    • Sets service image path in registry

      persistence

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks