Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

Win32_Dist...se.msi

windows7-x64

7

Win32_Dist...se.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Win32_Dist_Stable_release.zip

  • Size

    1.9MB

  • Sample

    230417-vgfe4agh6z

  • MD5

    9140623bd95356b4f607ec8b70aa0934

  • SHA1

    21c6e0abadadc621c9d3aa543e55598eb5f1b3d0

  • SHA256

    d75867530728e61013a66b8ff96ce349043b1c67ecec4e8ed8c54d2f2b537807

  • SHA512

    408415de6ce41a2f9bee5fd52dcadc1b5c335a771749974f8e73c1eb68341247a0b143ba1abe64bd0d17136a11b70c585cd541bf3c9dc965d48b552af1658b8d

  • SSDEEP

    49152:0rg6lMkPTywc5W5Z8ZVlXpHL3XijREe+FP+IH6d0nQgROQG:0rqkbywc5cOXije0i6d4G

Score
8/10

Malware Config

Targets

    • Target

      Win32_Dist_Stable_release.msi

    • Size

      2.9MB

    • MD5

      b7bdeddf07f67030a220f388ae6411ee

    • SHA1

      df485b606a06f8fe465862da52d654620e82901f

    • SHA256

      0cfc06fcdebd632c1c1797b79fff5e0c45880a322157f82895cd43f86f9e8232

    • SHA512

      e9b3e08734dca64575a0fad7f5e93cb2c6848457c0f254aed18a174c957b7aebbe3c0cac2cfe7432df81c6804c31dc1b955d5ea9084c11255ad492d102219142

    • SSDEEP

      49152:OA4l1/2vN8r6I5WCmR+JJke7awlK2FV9fXlVeIfyMHVPFX1ZdDKjbAS+lpwmtiV1:m/wo6/e7a6fwcDKj0QqiV+g

    Score
    8/10

    • Blocklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks