Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    launcherfull-shiginima-v4300-pc.zip

  • Size

    4.8MB

  • Sample

    221228-174hhabg66

  • MD5

    90d2a84071f24e5ca91fdf09e32fd018

  • SHA1

    820a27bbf7d27bd61b39efda6b58b191e1ecf4d9

  • SHA256

    eb8b2c7d51ca85de8962a91626b2bfdf3900185810ab80ff789b217471532728

  • SHA512

    a5a0b6b1830b3c90013407f203403428a9db3bd95138809014845e775dd184bfbac33933d7983f95458326600d1fbd7f1d70b3e1f6698e062ecbd080f71f00d9

  • SSDEEP

    98304:pTZ7OALWI7pqLXLk7Ppmu/qQ8RR/XLsKB41nng2VW51N:ppSIQ385/cRtXLmK201N

Malware Config

Targets

    • Target

      launcherfull-shiginima-v4300.exe

    • Size

      5.4MB

    • MD5

      3e1ad25616e2d1435fc938fc4fb0cf79

    • SHA1

      48baffa8089e4b29fa9acacde0ef4e82a6f28771

    • SHA256

      952a0c261f263416f2dde7896b526539bbad9fa81ba382f7fbd0628b9a18c3a2

    • SHA512

      f165a25062fcc5e8f5b69fd7db2f97668d88ff236a509120a8cfd78befc45e3777f27030654bfc624a4b54da12152225f61c05ac945ef37cbf0451751f0b995d

    • SSDEEP

      98304:Y2LidbOU72RGEaRja98Xq1N/dIFbpeK0TLzE9XuS5tSXylo/LHz0k:HSbOU72naja9HYFlz0TLzE9Xgym/LHQk

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Registers COM server for autorun

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks