Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

r.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    r.exe

  • Size

    963KB

  • Sample

    230530-m4v53ahb96

  • MD5

    d7056ec9d56f1df77cacda2ed75d06fe

  • SHA1

    0a8948df4f8c8c677fbdf9bbecdd6fbfa14bb7e1

  • SHA256

    37a730f1fa06507e43b62965a7e0c5d6d3b9bd612d687a3e4974b0bebe979023

  • SHA512

    cd76d5805d206956650ea63e89acd64977a35ff9d9232b42bfbd921cf976eb57c8faf6be72715e434b3fcb00efe2aa2ee68486ed1d497a4fcc65acb94e6c4f9a

  • SSDEEP

    12288:6SStyDEtxMF11wWjJ/sd6cB9nGh1dtQ1DCQoTjAGvlcFCLAu7FAdBFl+Jl28bSSK:6SS8AI71nsd6mnt1DCQRGvOv

Score
7/10
bootkitpersistence

Malware Config

Targets

    • Target

      r.exe

    • Size

      963KB

    • MD5

      d7056ec9d56f1df77cacda2ed75d06fe

    • SHA1

      0a8948df4f8c8c677fbdf9bbecdd6fbfa14bb7e1

    • SHA256

      37a730f1fa06507e43b62965a7e0c5d6d3b9bd612d687a3e4974b0bebe979023

    • SHA512

      cd76d5805d206956650ea63e89acd64977a35ff9d9232b42bfbd921cf976eb57c8faf6be72715e434b3fcb00efe2aa2ee68486ed1d497a4fcc65acb94e6c4f9a

    • SSDEEP

      12288:6SStyDEtxMF11wWjJ/sd6cB9nGh1dtQ1DCQoTjAGvlcFCLAu7FAdBFl+Jl28bSSK:6SS8AI71nsd6mnt1DCQRGvOv

    Score
    7/10
    bootkitpersistence

    • Executes dropped EXE

    • Drops Chrome extension

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks