Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224
-
Size
135KB
-
Sample
221203-pe2yeshg96
-
MD5
5036d7b954c37aa3ebd4395f4b265ef0
-
SHA1
7343ffda4306b24eaffeceae323c68e980893954
-
SHA256
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224
-
SHA512
d14d939c8e28536172c3cf4e682954cfd616965f28ecdc57431c886fbe1433e118ab526739d5df6676322b0cc33c7b8199e4f78f7a4c4aaaaf429d558a4c66f9
-
SSDEEP
3072:aP52ouHZ1g/Ica7nUb7g69LdagI+ZkwGQxmXLbGVEjB7FYlW:imZK/Vs69FI0kwKbGc7Fc
Static task
static1
Behavioral task
behavioral1
Sample
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224
-
Size
135KB
-
MD5
5036d7b954c37aa3ebd4395f4b265ef0
-
SHA1
7343ffda4306b24eaffeceae323c68e980893954
-
SHA256
d9507f2ebf751e2f23c018c02b008e6155e6d04b827b7cd17a75bac6dafad224
-
SHA512
d14d939c8e28536172c3cf4e682954cfd616965f28ecdc57431c886fbe1433e118ab526739d5df6676322b0cc33c7b8199e4f78f7a4c4aaaaf429d558a4c66f9
-
SSDEEP
3072:aP52ouHZ1g/Ica7nUb7g69LdagI+ZkwGQxmXLbGVEjB7FYlW:imZK/Vs69FI0kwKbGc7Fc
Score10/10-
Modifies firewall policy service
-
Modifies security service
-
Sets service image path in registry
-
Deletes itself
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-