Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    rn02s62s

  • Size

    4KB

  • Sample

    230604-vpkd1scg96

  • MD5

    8c2a55f8e277609968700c8938910c62

  • SHA1

    a764a3e0877b8f81bc6e5d385ba0eacdf37e849e

  • SHA256

    91405b574b920cdd1fb2dcb40db7a364dec4e6de62114db9aff00d366fc62c1f

  • SHA512

    b586b6e89ebdc4badabef96960a8a3e15817b2020243796087a4cfeb3e413ae7637d8f4049f869ce4272895f981c59d99d99b65dd962f56fbacb97788dd4b902

  • SSDEEP

    96:r/SasasaPaUhdauaya8a42ayRYFilsapmBtMwrPZRTYnBi:DSr18NhdFvZwpOlMwrnknBi

Score
7/10

Malware Config

Targets

    • Target

      rn02s62s

    • Size

      4KB

    • MD5

      8c2a55f8e277609968700c8938910c62

    • SHA1

      a764a3e0877b8f81bc6e5d385ba0eacdf37e849e

    • SHA256

      91405b574b920cdd1fb2dcb40db7a364dec4e6de62114db9aff00d366fc62c1f

    • SHA512

      b586b6e89ebdc4badabef96960a8a3e15817b2020243796087a4cfeb3e413ae7637d8f4049f869ce4272895f981c59d99d99b65dd962f56fbacb97788dd4b902

    • SSDEEP

      96:r/SasasaPaUhdauaya8a42ayRYFilsapmBtMwrPZRTYnBi:DSr18NhdFvZwpOlMwrnknBi

    Score
    7/10
    • Modifies hosts file

      Adds to hosts file used for mapping hosts to IP addresses.

    • Attempts to change immutable files

      Modifies inode attributes on the filesystem to allow changing of immutable files.

    • Creates/modifies Cron job

      Cron allows running tasks on a schedule, and is commonly used for malware persistence.

    • Enumerates running processes

      Discovers information about currently running processes on the system

    • Reads CPU attributes

MITRE ATT&CK Enterprise v6

Tasks