Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

fe1b0398a9...b0.exe

windows7-x64

5

fe1b0398a9...b0.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fe1b0398a97686d5538a9922e81b4cc3518332bf479d5d644f801bfad14089b0

  • Size

    1.1MB

  • Sample

    221204-ntjvqaef63

  • MD5

    34e35c911a4ea707fcf1f1047c998a61

  • SHA1

    ca9a16f65a67733cc1bdfa9c0ea4ececba95a80d

  • SHA256

    fe1b0398a97686d5538a9922e81b4cc3518332bf479d5d644f801bfad14089b0

  • SHA512

    d8cb8b1e5e56ec79583f419d10ca7ec7c0d77e51b7b20403d6df1b61ab7c88545ec2a5ad6e0deede461b9aee191112f92a5cede951181bc1c067155cc6bd71d4

  • SSDEEP

    1536:y01fkUy48TqafeC8KbxZDxX7mKtHEBr2h25NACTARjc7P8RvegSU0fh:118UyR+weCrFZDQKCr2h25NCj0P6vwfh

Score
6/10
microsoftpersistencephishing

Malware Config

Targets

    • Target

      fe1b0398a97686d5538a9922e81b4cc3518332bf479d5d644f801bfad14089b0

    • Size

      1.1MB

    • MD5

      34e35c911a4ea707fcf1f1047c998a61

    • SHA1

      ca9a16f65a67733cc1bdfa9c0ea4ececba95a80d

    • SHA256

      fe1b0398a97686d5538a9922e81b4cc3518332bf479d5d644f801bfad14089b0

    • SHA512

      d8cb8b1e5e56ec79583f419d10ca7ec7c0d77e51b7b20403d6df1b61ab7c88545ec2a5ad6e0deede461b9aee191112f92a5cede951181bc1c067155cc6bd71d4

    • SSDEEP

      1536:y01fkUy48TqafeC8KbxZDxX7mKtHEBr2h25NACTARjc7P8RvegSU0fh:118UyR+weCrFZDQKCr2h25NCj0P6vwfh

    Score
    6/10
    microsoftpersistencephishing

    • Adds Run key to start application

      persistence

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks