Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

a5b18ee0de...d4.exe

windows7-x64

5

a5b18ee0de...d4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5b18ee0de9ccd9de8159ef8ee41e027375f50a59212308f0ebfad974f86d5d4

  • Size

    75KB

  • Sample

    221205-hnwdnsah6s

  • MD5

    d7604bb80c04b4b139d85cbc6a0eb377

  • SHA1

    e15df1ccb51a15080a65c7fb236720cdfe9289ae

  • SHA256

    a5b18ee0de9ccd9de8159ef8ee41e027375f50a59212308f0ebfad974f86d5d4

  • SHA512

    499c06b60e4f7255b664b686db10e091505a6b8192f7c9de79a70e862b388ae9edf974f8f24943bb9f10bfc7c78d1fe3b39b0e001df8295b47284f5deeb9f1e1

  • SSDEEP

    1536:AGwfGki70L7xoFVE3ZU4/MzWEZwLEk6TcsLu:AGwf670L7xoF+OMzEaQk6TxK

Score
8/10
persistence

Malware Config

Targets

    • Target

      a5b18ee0de9ccd9de8159ef8ee41e027375f50a59212308f0ebfad974f86d5d4

    • Size

      75KB

    • MD5

      d7604bb80c04b4b139d85cbc6a0eb377

    • SHA1

      e15df1ccb51a15080a65c7fb236720cdfe9289ae

    • SHA256

      a5b18ee0de9ccd9de8159ef8ee41e027375f50a59212308f0ebfad974f86d5d4

    • SHA512

      499c06b60e4f7255b664b686db10e091505a6b8192f7c9de79a70e862b388ae9edf974f8f24943bb9f10bfc7c78d1fe3b39b0e001df8295b47284f5deeb9f1e1

    • SSDEEP

      1536:AGwfGki70L7xoFVE3ZU4/MzWEZwLEk6TcsLu:AGwf670L7xoF+OMzEaQk6TxK

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks