Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    tlauncher-2_67.exe

  • Size

    2.7MB

  • Sample

    230216-xg84hsbb76

  • MD5

    148dad5c69d17832a8b611f3bf0570f2

  • SHA1

    fbc42d255c66287e2a942c6175bf66c568757766

  • SHA256

    b8b83c0bab9ea98c5c79a2d5a20fa7253f868fd7008d1c8e92ece5e58d19c569

  • SHA512

    cd33439f31f93abbf3a4b041a0c2ed7073281cb90583c56719b5f526686cda8fa1acf5dcc866b89afcc7493257dc43f991e062485a1dd4cb7a7d2221f2cc4dda

  • SSDEEP

    49152:i3ulB7oLOUQgIwZ6EMaE1WecsHLYelgRV8PmM7NAZod4Z1uSM:8ulBAOUDIwZ6EMayAsrpUPxY

Malware Config

Targets

    • Target

      tlauncher-2_67.exe

    • Size

      2.7MB

    • MD5

      148dad5c69d17832a8b611f3bf0570f2

    • SHA1

      fbc42d255c66287e2a942c6175bf66c568757766

    • SHA256

      b8b83c0bab9ea98c5c79a2d5a20fa7253f868fd7008d1c8e92ece5e58d19c569

    • SHA512

      cd33439f31f93abbf3a4b041a0c2ed7073281cb90583c56719b5f526686cda8fa1acf5dcc866b89afcc7493257dc43f991e062485a1dd4cb7a7d2221f2cc4dda

    • SSDEEP

      49152:i3ulB7oLOUQgIwZ6EMaE1WecsHLYelgRV8PmM7NAZod4Z1uSM:8ulBAOUDIwZ6EMayAsrpUPxY

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks