Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f1b506a365f630be0d8d34d877a6f2bb83331cc4022f4e875547dd7af8ba94f7

  • Size

    777KB

  • Sample

    221206-vkvzysff69

  • MD5

    036d8a0aceb9c7b38ea13fa8a204f470

  • SHA1

    321f6e9e4c21841b5d6836f6840163523aebaae4

  • SHA256

    f1b506a365f630be0d8d34d877a6f2bb83331cc4022f4e875547dd7af8ba94f7

  • SHA512

    ab4d082deb1b9e7099a90da207033601306b242a44ba372cc79d81d113af6e4c6d4d7eeb54ff17e580ff28c39af3dbad0d4c38996d6ddf7b90c9c4a183f3e5d9

  • SSDEEP

    12288:0Lkcoxg7v3qnC11ErwIhh0F4qwUgUny5QPC+qRHk:qfmMv6Ckr7Mny5QanHk

Score
10/10

Malware Config

Targets

    • Target

      f1b506a365f630be0d8d34d877a6f2bb83331cc4022f4e875547dd7af8ba94f7

    • Size

      777KB

    • MD5

      036d8a0aceb9c7b38ea13fa8a204f470

    • SHA1

      321f6e9e4c21841b5d6836f6840163523aebaae4

    • SHA256

      f1b506a365f630be0d8d34d877a6f2bb83331cc4022f4e875547dd7af8ba94f7

    • SHA512

      ab4d082deb1b9e7099a90da207033601306b242a44ba372cc79d81d113af6e4c6d4d7eeb54ff17e580ff28c39af3dbad0d4c38996d6ddf7b90c9c4a183f3e5d9

    • SSDEEP

      12288:0Lkcoxg7v3qnC11ErwIhh0F4qwUgUny5QPC+qRHk:qfmMv6Ckr7Mny5QanHk

    Score
    10/10
    • Modifies firewall policy service

    • Adds policy Run key to start application

    • Modifies Installed Components in the registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks