Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
exn.skype,tool.3.3.exe
-
Size
180KB
-
Sample
230503-gnm7madg53
-
MD5
72ed1f2c6330f700ed0469a2a1d99b55
-
SHA1
21df402efbd21798fcbf93995b622f6631d164fe
-
SHA256
eea3ceb4558862e1b367585c4e7615b71e021eec7d9ed85df2bb6c10520e0d07
-
SHA512
a2a71c42b87e52b714b1dd2afd34095df9f1ef3457a26bc2915ecb492b172ef8e486c2dd56d520b002817410a3a673cb15796af94411ba456eca76371a436306
-
SSDEEP
3072:lJbLe/0VeWN74RhD+RsmJe4oR2lQBV+UdE+rECWp7hKfKuV:vewFuyRBI4iBV+UdvrEFp7hKn
Static task
static1
Behavioral task
behavioral1
Sample
exn.skype,tool.3.3.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
exn.skype,tool.3.3.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
exn.skype,tool.3.3.exe
-
Size
180KB
-
MD5
72ed1f2c6330f700ed0469a2a1d99b55
-
SHA1
21df402efbd21798fcbf93995b622f6631d164fe
-
SHA256
eea3ceb4558862e1b367585c4e7615b71e021eec7d9ed85df2bb6c10520e0d07
-
SHA512
a2a71c42b87e52b714b1dd2afd34095df9f1ef3457a26bc2915ecb492b172ef8e486c2dd56d520b002817410a3a673cb15796af94411ba456eca76371a436306
-
SSDEEP
3072:lJbLe/0VeWN74RhD+RsmJe4oR2lQBV+UdE+rECWp7hKfKuV:vewFuyRBI4iBV+UdvrEFp7hKn
Score8/10-
Modifies AppInit DLL entries
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-