Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fb909600aaa17c090aceac895aaf5d869634bfca3a9fad3bb27dbac262ea6850

  • Size

    114KB

  • Sample

    221204-dnt4dsbf26

  • MD5

    26e00622f6f950f563719001df0ab540

  • SHA1

    70e4004ec7c4e3c27963fae19e9c05f7f31b5ca0

  • SHA256

    fb909600aaa17c090aceac895aaf5d869634bfca3a9fad3bb27dbac262ea6850

  • SHA512

    35b510892921787b4158508ebd3e7699abfaf53f426721da75e061f40420caa48b2b47c4a726952f987cc8b64511b787f430a8f02bfbc3fbf481345b436d0a86

  • SSDEEP

    3072:PiHxG9wj0oKkrk45pks9sFSLrDtt7CfijF9/8VlE:KRG9CikV5pJvLd90Vu

Score
10/10

Malware Config

Targets

    • Target

      fb909600aaa17c090aceac895aaf5d869634bfca3a9fad3bb27dbac262ea6850

    • Size

      114KB

    • MD5

      26e00622f6f950f563719001df0ab540

    • SHA1

      70e4004ec7c4e3c27963fae19e9c05f7f31b5ca0

    • SHA256

      fb909600aaa17c090aceac895aaf5d869634bfca3a9fad3bb27dbac262ea6850

    • SHA512

      35b510892921787b4158508ebd3e7699abfaf53f426721da75e061f40420caa48b2b47c4a726952f987cc8b64511b787f430a8f02bfbc3fbf481345b436d0a86

    • SSDEEP

      3072:PiHxG9wj0oKkrk45pks9sFSLrDtt7CfijF9/8VlE:KRG9CikV5pJvLd90Vu

    Score
    10/10
    • Modifies firewall policy service

    • Adds policy Run key to start application

    • Sets service image path in registry

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks