Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

1

tmp000065ae.exe

windows10-1703-x64

9

Resubmissions

16/03/2023, 13:18

230316-qj8r7sdc4v 9

16/03/2023, 12:54

230316-p5qcbaah42 9

16/03/2023, 12:52

230316-p32ybsdb5w 9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MDE_File_Sample_ed2c3f60a189770816d6deb5746f79f9ee6e19f0.zip

  • Size

    110KB

  • Sample

    230316-qj8r7sdc4v

  • MD5

    0aa20553e911f8995eac7d77d209cf4c

  • SHA1

    b7d8ca01baefc15279458b2bb2718fd235ee86e5

  • SHA256

    aab0ed59a2176b68efd47242277ff8ad443b4cfa156cfd7b191d5421a5cbdfe6

  • SHA512

    240cc0a50447437f0a90836f3d94f4d12bd4fd89d5b944d968f80ae67337a0549064fbacc3e5c6725f1e3bf02f1721b58b7d54a2daeb733138a8214a81049ea7

  • SSDEEP

    3072:UKw+ldhDaEM5qWQcQNDb/S7cv5NW5+wXxhVQLK:UKwGmPA5cQ58ANW5+EOe

Score
9/10
discovery

Malware Config

Targets

    • Target

      tmp000065ae

    • Size

      129KB

    • MD5

      4200d62ceb1452b26bc875e765665b29

    • SHA1

      ed2c3f60a189770816d6deb5746f79f9ee6e19f0

    • SHA256

      202672873906e3efaeaeba9e5bb74fe1ab0695becceab0e70644a482d127a124

    • SHA512

      996470bbacb20501acd1ff475d96be38e34f28236e1b9699b4e74ee99fd2318336f869354195311ec4e916bff6f2c007a73fc4d28dca96a13bf1136ce43f03c8

    • SSDEEP

      3072:4d/vyWmJe45yOZlyxPjK959lye9Pahh70tDZqvv:4Xp1OAPj29l59Par0Fk

    Score
    9/10
    discovery

    • Nirsoft

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks