Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

Anonymous DoSer.exe

windows7-x64

1

Anonymous DoSer.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Anonymous DoSer.EXE

  • Size

    278KB

  • Sample

    230102-yk13raga43

  • MD5

    270f2f56af0de91cc5f0b83ed241851b

  • SHA1

    7b0ea98bb83ca8be24e62b2f68133f43867e6403

  • SHA256

    1a9e73e0e877edd16882dcc866467e7ee817efad6ef68a7de82c2c12b2e566fe

  • SHA512

    b8b4b06503cbc9da38a898088f8031b44ee0e4dd415f2ab853b360fd3065a37df7d63383913948cbc475669a6c5aaff6a20379d5bd89bbfa4c9510bff4e42597

  • SSDEEP

    3072:ORWxXXyzEf1aALBCYp4xObgRuBOPL+RNUI65KB2pUwMjbKtMBy2bY:eWxHyzENaA9SO0RuQLPIApniU2

Score
9/10
discoverypersistence

Malware Config

Targets

    • Target

      Anonymous DoSer.EXE

    • Size

      278KB

    • MD5

      270f2f56af0de91cc5f0b83ed241851b

    • SHA1

      7b0ea98bb83ca8be24e62b2f68133f43867e6403

    • SHA256

      1a9e73e0e877edd16882dcc866467e7ee817efad6ef68a7de82c2c12b2e566fe

    • SHA512

      b8b4b06503cbc9da38a898088f8031b44ee0e4dd415f2ab853b360fd3065a37df7d63383913948cbc475669a6c5aaff6a20379d5bd89bbfa4c9510bff4e42597

    • SSDEEP

      3072:ORWxXXyzEf1aALBCYp4xObgRuBOPL+RNUI65KB2pUwMjbKtMBy2bY:eWxHyzENaA9SO0RuQLPIApniU2

    Score
    9/10
    discoverypersistence

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks