Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839
-
Size
92KB
-
Sample
221203-lknq7sdf71
-
MD5
63449fad78f9e9e13ee519f9b37e591a
-
SHA1
f11b49f95ef9714d322b4f912c82e7ed5d18c338
-
SHA256
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839
-
SHA512
e1e0b88ce7116e8becf3d44ea3d3194af582791cfdfba66823b840700cc2bdb4f653713897a3ad13fa30f25d233414219ec119ed49e4ca13c8b5416511479a36
-
SSDEEP
1536:GT76uMyhLtB3eW7soSYT0hPvbVG/ocUhQoF/WVvVSfU5EhJB:GTqyhnjT0pYQ3QPTo
Static task
static1
Behavioral task
behavioral1
Sample
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839
-
Size
92KB
-
MD5
63449fad78f9e9e13ee519f9b37e591a
-
SHA1
f11b49f95ef9714d322b4f912c82e7ed5d18c338
-
SHA256
a5885afbcac1bb6f36ab672df0e399008d012d53e677f404b3abbde6b0c41839
-
SHA512
e1e0b88ce7116e8becf3d44ea3d3194af582791cfdfba66823b840700cc2bdb4f653713897a3ad13fa30f25d233414219ec119ed49e4ca13c8b5416511479a36
-
SSDEEP
1536:GT76uMyhLtB3eW7soSYT0hPvbVG/ocUhQoF/WVvVSfU5EhJB:GTqyhnjT0pYQ3QPTo
Score8/10-
Executes dropped EXE
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-