Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e092ca87a4e2fc3ec9116e61a4bc4ad4625df75895055027c07efe202d8058eb

  • Size

    195KB

  • Sample

    221203-n6w1tacc8y

  • MD5

    66cbfe01574c9d36ac7b098928ad839f

  • SHA1

    99acd5bbe39713bdeba06289b6d8ba4121105deb

  • SHA256

    e092ca87a4e2fc3ec9116e61a4bc4ad4625df75895055027c07efe202d8058eb

  • SHA512

    1359904ae4dcca15ef7f37c0b6f74110fe0bdf690828160f0c5b7c147a7aafd725cfccd566b1efa001d4ff2b4ec231fa9441ceaaf1602fdc57960fd784584d4b

  • SSDEEP

    3072:/FfzYE84mr/TgyaSXWKfrsisJk90VKZ4BHQ9udt7y9+fMKO1fhSsg7+:/xzf8lr/OSXWyrsr2MjHQ9RFA

Score
10/10

Malware Config

Targets

    • Target

      e092ca87a4e2fc3ec9116e61a4bc4ad4625df75895055027c07efe202d8058eb

    • Size

      195KB

    • MD5

      66cbfe01574c9d36ac7b098928ad839f

    • SHA1

      99acd5bbe39713bdeba06289b6d8ba4121105deb

    • SHA256

      e092ca87a4e2fc3ec9116e61a4bc4ad4625df75895055027c07efe202d8058eb

    • SHA512

      1359904ae4dcca15ef7f37c0b6f74110fe0bdf690828160f0c5b7c147a7aafd725cfccd566b1efa001d4ff2b4ec231fa9441ceaaf1602fdc57960fd784584d4b

    • SSDEEP

      3072:/FfzYE84mr/TgyaSXWKfrsisJk90VKZ4BHQ9udt7y9+fMKO1fhSsg7+:/xzf8lr/OSXWyrsr2MjHQ9RFA

    Score
    10/10
    • Modifies security service

    • Registers COM server for autorun

    • Deletes itself

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks