Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

bluesubsta...64.exe

windows7-x64

7

bluesubsta...64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bluesubstantialie64.zip

  • Size

    13.2MB

  • Sample

    230630-n6q5kahf96

  • MD5

    210ca8164986e2d313de8f93862ec0f0

  • SHA1

    e3d5048c8dc23e1b33e2ed75aa2abc5bd617e9ae

  • SHA256

    6f3543bc0f2f42083f50afaef738f27d47ca33afe82e8eefb6c081743268d5d0

  • SHA512

    9aa8eead0ce967fbc664fb1eb860ed99b8798129c7b41ac760be1e5dcae1a363ec33de6b11549b58ad4f4859fe2dbc8ba2faa5dae57acdef639fb5005496317a

  • SSDEEP

    393216:OTb2r/n72QWRIcvP/6s8K8knv0O/TkdO5:OT6j7IRIcvV8ziDrR5

Score
7/10
persistence

Malware Config

Targets

    • Target

      bluesubstantialie64/bluesubstantialie64.exe

    • Size

      13.2MB

    • MD5

      2bd2470d90bd8de8e260ff88a3fb181b

    • SHA1

      9fa0ac71fc0a7d36ad1c2b402f434f96f0453690

    • SHA256

      65918b1b4aaa0f8311e8ce96fffa7f7993537bf6132ef197ec3bb4717901198a

    • SHA512

      eeea312300337fb56c75bc3888c1233820e8c7a504f76384e833430feb355ab28fc437978c8a20561da4ffbae24c1596d24e137e49ec323045cc188607454b0b

    • SSDEEP

      393216:Rxry/zJfUYeJIEfvx4qqWwoD/E+Bp0tQ:Rxur14JIEBJq/wh7b

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks