Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab3aa6f41e5056db625a0bbe3df17cb045e676a40a4cec53847a97ce903c423b

  • Size

    583KB

  • Sample

    221203-s24bjsch63

  • MD5

    7ec9800e97ecb6f8b8590cf7c06da578

  • SHA1

    b5a5fb4aa3588cb4ed3b0be5f9985a3810d32114

  • SHA256

    ab3aa6f41e5056db625a0bbe3df17cb045e676a40a4cec53847a97ce903c423b

  • SHA512

    95ec1c77dbf961ceb8183b0ceeb0be67ef01444f9e525ab26a0f3d8e1623efb195e71e9cd911aca84cf4fa28469a32356a399ba75d75c3268211c955cd9367c1

  • SSDEEP

    12288:x2dcc3zvSUGljdYqvUkKr06SaGLB88B0oOR4xcOx:IN6UivvUkKA6SfLBPB0oOix

Malware Config

Targets

    • Target

      ab3aa6f41e5056db625a0bbe3df17cb045e676a40a4cec53847a97ce903c423b

    • Size

      583KB

    • MD5

      7ec9800e97ecb6f8b8590cf7c06da578

    • SHA1

      b5a5fb4aa3588cb4ed3b0be5f9985a3810d32114

    • SHA256

      ab3aa6f41e5056db625a0bbe3df17cb045e676a40a4cec53847a97ce903c423b

    • SHA512

      95ec1c77dbf961ceb8183b0ceeb0be67ef01444f9e525ab26a0f3d8e1623efb195e71e9cd911aca84cf4fa28469a32356a399ba75d75c3268211c955cd9367c1

    • SSDEEP

      12288:x2dcc3zvSUGljdYqvUkKr06SaGLB88B0oOR4xcOx:IN6UivvUkKA6SfLBPB0oOix

    • Adds policy Run key to start application

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Deletes itself

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks