Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

aaad45b3a0...84.exe

windows7-x64

8

aaad45b3a0...84.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aaad45b3a001009d5f840ad16aaf9027cf4bd7241057e630fe0a34702f719c84

  • Size

    171KB

  • Sample

    221203-s4smtsda93

  • MD5

    3f2ecc1e1dad23071f38cd08fb7c6d9c

  • SHA1

    c62331533faf93ebc441ddb1b0731697fbdf8bd4

  • SHA256

    aaad45b3a001009d5f840ad16aaf9027cf4bd7241057e630fe0a34702f719c84

  • SHA512

    3ee4a4d81476e753e6f8b722ec24ac22d7a248e335861bf83a299e47ab003ba73c62a95ce8c8d1bcc09526721a2866b5ca5d00612f00e7962cd84c6df8c122d8

  • SSDEEP

    3072:YK91ur/c9FB2LJRdBgocrOSiFAbx6XnoeAhgJkRdwsEKJohRRiK6:b91uTcMLHdOoeHGndAh0sEKJSRRit

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      aaad45b3a001009d5f840ad16aaf9027cf4bd7241057e630fe0a34702f719c84

    • Size

      171KB

    • MD5

      3f2ecc1e1dad23071f38cd08fb7c6d9c

    • SHA1

      c62331533faf93ebc441ddb1b0731697fbdf8bd4

    • SHA256

      aaad45b3a001009d5f840ad16aaf9027cf4bd7241057e630fe0a34702f719c84

    • SHA512

      3ee4a4d81476e753e6f8b722ec24ac22d7a248e335861bf83a299e47ab003ba73c62a95ce8c8d1bcc09526721a2866b5ca5d00612f00e7962cd84c6df8c122d8

    • SSDEEP

      3072:YK91ur/c9FB2LJRdBgocrOSiFAbx6XnoeAhgJkRdwsEKJohRRiK6:b91uTcMLHdOoeHGndAh0sEKJSRRit

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks