Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

source_prepared.exe

windows7-x64

7

source_prepared.exe

windows10-1703-x64

7

source_prepared.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    source_prepared.exe

  • Size

    75.7MB

  • Sample

    230720-f2b6vach45

  • MD5

    b0151601c95523dd56e0addd9793df7e

  • SHA1

    b2a7ad5513a23fc5b3e1977dfb38120f02f5d130

  • SHA256

    c38b5e734ca77e5142fed388cc327ab2a6934359d72f8dc3f21afe3810fee47e

  • SHA512

    4f96b34c55a9493fc97648364982c22491fdd924c97f610b93ad5f0dda87afd306661ea855952f42c9f1eeb494f3a9541702eb52ba33c7709a0ec1eb9f73b906

  • SSDEEP

    1572864:Y5QyQD6mcPJICcXd0c9vCTaJcIFsg/tAHTjirAH8+1osuTCSxOB6xMzWKDtZo3Gb:Y5ec+COjRqIFsTHPS6xjKcBaIdDtWTW

Score
10/10
pysilonpersistencepyinstallerupx

Malware Config

Targets

    • Target

      source_prepared.exe

    • Size

      75.7MB

    • MD5

      b0151601c95523dd56e0addd9793df7e

    • SHA1

      b2a7ad5513a23fc5b3e1977dfb38120f02f5d130

    • SHA256

      c38b5e734ca77e5142fed388cc327ab2a6934359d72f8dc3f21afe3810fee47e

    • SHA512

      4f96b34c55a9493fc97648364982c22491fdd924c97f610b93ad5f0dda87afd306661ea855952f42c9f1eeb494f3a9541702eb52ba33c7709a0ec1eb9f73b906

    • SSDEEP

      1572864:Y5QyQD6mcPJICcXd0c9vCTaJcIFsg/tAHTjirAH8+1osuTCSxOB6xMzWKDtZo3Gb:Y5ec+COjRqIFsTHPS6xjKcBaIdDtWTW

    Score
    7/10
    upxpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v6

Tasks