Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a907c441cdafdee27259492e0b5b3c0383f675dbd164d68978823c2057decb60

  • Size

    48KB

  • Sample

    221205-tnamraeg34

  • MD5

    1ff8070c0dd9246a11822761780f492a

  • SHA1

    433f41cb11d107bf2c44a28f5ca3019d3505796b

  • SHA256

    a907c441cdafdee27259492e0b5b3c0383f675dbd164d68978823c2057decb60

  • SHA512

    285e4755cb43acbbf34a0b14347e3f347013d348a261238592a3d71ea795a95a3cd3e9b17d8bb8f6f877cc08a3a8028ef1171f3dd1326fb8458a9048d13505a1

  • SSDEEP

    768:NR8Yv0lgin6gxLRiSAOvJ6L5WhvkBEpKeeQybU7X1cDuhsqfGzzqwx+e1w:TSnNXvtCXgb1cZPzTxH

Score
8/10

Malware Config

Targets

    • Target

      a907c441cdafdee27259492e0b5b3c0383f675dbd164d68978823c2057decb60

    • Size

      48KB

    • MD5

      1ff8070c0dd9246a11822761780f492a

    • SHA1

      433f41cb11d107bf2c44a28f5ca3019d3505796b

    • SHA256

      a907c441cdafdee27259492e0b5b3c0383f675dbd164d68978823c2057decb60

    • SHA512

      285e4755cb43acbbf34a0b14347e3f347013d348a261238592a3d71ea795a95a3cd3e9b17d8bb8f6f877cc08a3a8028ef1171f3dd1326fb8458a9048d13505a1

    • SSDEEP

      768:NR8Yv0lgin6gxLRiSAOvJ6L5WhvkBEpKeeQybU7X1cDuhsqfGzzqwx+e1w:TSnNXvtCXgb1cZPzTxH

    Score
    8/10
    • Adds policy Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks