Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843

  • Size

    146KB

  • Sample

    230716-wh26xsgc92

  • MD5

    ba3686fcd353c6ff20b86615ef05dde9

  • SHA1

    cbda4857f125708ce14bc3cf48be549ef2f87c05

  • SHA256

    d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843

  • SHA512

    e9f552895fae1c03ea0e21def511221880950154e506aa79a8adc51151b3e495bd32d34f9b20beda5b291d6faeda177a1e3d385043a0423a6029b7a7a1a866d2

  • SSDEEP

    3072:/hFA/6ixzzLwjiR7ZwelYpKj/rlxafNoLXfHXW:p8KjiRVwz8UNorPXW

Malware Config

Targets

    • Target

      d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843

    • Size

      146KB

    • MD5

      ba3686fcd353c6ff20b86615ef05dde9

    • SHA1

      cbda4857f125708ce14bc3cf48be549ef2f87c05

    • SHA256

      d493f2779850ee4b508d0d91ff9446406a447bfa325ddea54ad728489241b843

    • SHA512

      e9f552895fae1c03ea0e21def511221880950154e506aa79a8adc51151b3e495bd32d34f9b20beda5b291d6faeda177a1e3d385043a0423a6029b7a7a1a866d2

    • SSDEEP

      3072:/hFA/6ixzzLwjiR7ZwelYpKj/rlxafNoLXfHXW:p8KjiRVwz8UNorPXW

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v6

Tasks