Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

db62a3effd...4c.exe

windows7-x64

8

db62a3effd...4c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db62a3effdddd7c63dc88db492c5176ed65d3e4bb22e84b24ead3c30a166bb4c

  • Size

    454KB

  • Sample

    221204-rwg1paca8v

  • MD5

    ff4f66b9c182c1ebced680589b0ac953

  • SHA1

    8f0c7826d0bd2976243a0b308fd0de8887b3565a

  • SHA256

    db62a3effdddd7c63dc88db492c5176ed65d3e4bb22e84b24ead3c30a166bb4c

  • SHA512

    48478a4b216a407c0cc40843bba7c1f2567c9c8fea08f69059d9c6f87ba6741635b5e5fc155d7f9785d89b76fcbd9998a2486b2ccac2ac66aa5d19b32b60e770

  • SSDEEP

    12288:wxoXutyRsfnortLcLt/KHsrgHwCU1Wp86X1T5zXT:wxoA3CM/yskHwCU1KvlNH

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      db62a3effdddd7c63dc88db492c5176ed65d3e4bb22e84b24ead3c30a166bb4c

    • Size

      454KB

    • MD5

      ff4f66b9c182c1ebced680589b0ac953

    • SHA1

      8f0c7826d0bd2976243a0b308fd0de8887b3565a

    • SHA256

      db62a3effdddd7c63dc88db492c5176ed65d3e4bb22e84b24ead3c30a166bb4c

    • SHA512

      48478a4b216a407c0cc40843bba7c1f2567c9c8fea08f69059d9c6f87ba6741635b5e5fc155d7f9785d89b76fcbd9998a2486b2ccac2ac66aa5d19b32b60e770

    • SSDEEP

      12288:wxoXutyRsfnortLcLt/KHsrgHwCU1Wp86X1T5zXT:wxoA3CM/yskHwCU1KvlNH

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks