Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839

  • Size

    92KB

  • Sample

    221203-lknq7sdf71

  • MD5

    63449fad78f9e9e13ee519f9b37e591a

  • SHA1

    f11b49f95ef9714d322b4f912c82e7ed5d18c338

  • SHA256

    a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839

  • SHA512

    e1e0b88ce7116e8becf3d44ea3d3194af582791cfdfba66823b840700cc2bdb4f653713897a3ad13fa30f25d233414219ec119ed49e4ca13c8b5416511479a36

  • SSDEEP

    1536:GT76uMyhLtB3eW7soSYT0hPvbVG/ocUhQoF/WVvVSfU5EhJB:GTqyhnjT0pYQ3QPTo

Score
8/10

Malware Config

Targets

    • Target

      a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839

    • Size

      92KB

    • MD5

      63449fad78f9e9e13ee519f9b37e591a

    • SHA1

      f11b49f95ef9714d322b4f912c82e7ed5d18c338

    • SHA256

      a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839

    • SHA512

      e1e0b88ce7116e8becf3d44ea3d3194af582791cfdfba66823b840700cc2bdb4f653713897a3ad13fa30f25d233414219ec119ed49e4ca13c8b5416511479a36

    • SSDEEP

      1536:GT76uMyhLtB3eW7soSYT0hPvbVG/ocUhQoF/WVvVSfU5EhJB:GTqyhnjT0pYQ3QPTo

    Score
    8/10
    • Executes dropped EXE

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Modifies WinLogon

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks