Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

15dfe.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MDE_File_Sample_effa91a0bfa1f813fa44720a8a596488ddba77bb.zip

  • Size

    32.0MB

  • Sample

    230419-j9wr1abb5t

  • MD5

    85dbbdc86e78c36138c4b4fcefab622e

  • SHA1

    aba329ae1c8f1db44dd38d3ed361011e0ecee6bf

  • SHA256

    a14de0b134a1f29867a9ced1917bacb51f27439aaaf23a2f79223c09f7f1cb66

  • SHA512

    755f4d521b7d3ac460645ad216a7b1d869d567ce02594823311664351d32432c98055ff761fe1488d3c8bf87a726157a3931d16d5f4eceb359689e0f8723b0f6

  • SSDEEP

    786432:bcdq3F33LQy2wWFv6njF2IjeWPBj6jOIORs:bcdq3FQyRmIjF2IqWPF2

Score
8/10
persistence

Malware Config

Targets

    • Target

      15dfe.msi

    • Size

      32.3MB

    • MD5

      2d070b46cbf01bfb217b2157ee97cbea

    • SHA1

      effa91a0bfa1f813fa44720a8a596488ddba77bb

    • SHA256

      ba27249fbd5fbdbb4c0418d1e03f4d06c09756caa15d1094c7c90b43c1505015

    • SHA512

      77371374182e44e7decd20e43f12d870a6807b7c7d9283b13f0826305e9aed81045dcd030140ca74a845eef293881011bc9b6a4bce12bdde94c27b235f7ddbb7

    • SSDEEP

      786432:5RNL9jDmGwzEgvexNAoLi9fJOUlo4Gd/JOIIUzbTsG:F9vewgLo2D00Ix3

    Score
    8/10
    persistence

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks